Missing state parameter in OAuth requests leading to CSRF vulnerability

PKSA-676z-vx4z-rf2s

Affected package: sensiolabs/connect

Affected version: <4.2.3

Reported by:
FriendsOfPHP/security-advisories