ZmartZone IAM mod_auth_openidc 2.3.10.1 and earlier is affected by: Cross Site Scripting (XSS). The impact is: Redirecting the user to a phishing page or interacting with the application on behalf of the user. The component is: File: src/mod_auth_openidc.c, Line: 3109. The fixed version is: 2.3.10.2.
References
Configurations
History
No history.
Information
Published : 2019-07-19 15:15
Updated : 2024-02-28 17:08
NVD link : CVE-2019-1010247
Mitre link : CVE-2019-1010247
CVE.ORG link : CVE-2019-1010247
JSON object : View
Products Affected
openidc
- mod_auth_openidc
CWE
CWE-79
Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting')