RSS   Vulnerabilities for 'Identityserver3'   RSS

2017-08-07
 
CVE-2017-12677

 

 
IdentityServer3 2.4.x, 2.5.x, and 2.6.x before 2.6.1 has XSS in an Angular expression on the authorize response page, which might allow remote attackers to obtain sensitive information about the IdentityServer authorization response.

 

 >>> Vendor: Identityserver 2 Products
Identityserver3
Identityserver4


Copyright 2024, cxsecurity.com

 

Back to Top