ZmartZone IAM mod_auth_openidc 2.3.10.1 and earlier is affected by: Cross Site Scripting (XSS). The impact is: Redirecting the user to a phishing page or interacting with the application on behalf of the user. The component is: File: src/mod_auth_openidc.c, Line: 3109. The fixed version is: 2.3.10.2.
References
Configurations
Information
Published : 2019-07-19 08:15
Updated : 2020-07-29 17:15
NVD link : CVE-2019-1010247
Mitre link : CVE-2019-1010247
JSON object : View
CWE
CWE-79
Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting')
Products Affected
zmartzone
- mod_auth_openidc