The Nextend Social Login and Register plugin for WordPress is vulnerable to a self-based Reflected Cross-Site Scripting via the ‘error_description’ parameter in all versions up to, and including, ...
Continue Reading
March 03, 2024
This module enables an Apache 2.x web server to operate as an OpenID Connect Relying Party and/or OAuth 2.0 Resource...Read More ...
Continue Reading
March 02, 2024
The remote CentOS Linux 9 host has a package installed that is affected by a vulnerability as referenced in the python- oauthlib-3.1.1-5.el9 build changelog. OAuthLib is an implementation of the OAut ...
Continue Reading
March 02, 2024
The Nextend Social Login and Register plugin for WordPress is vulnerable to a self-based Reflected Cross-Site Scripting via the ‘error_description’ parameter in all versions up to, and including, ...
Continue Reading
March 02, 2024
Flask-AppBuilder is vulnerable to Cross-Site Scripting (XSS). The vulnerability is caused by insufficient sanitization of user-provided data in the handling of URLs within the OAuth login page, allowi ...
Continue Reading
March 02, 2024
The remote CentOS Linux 9 host has a package installed that is affected by multiple vulnerabilities as referenced in the grafana-9.0.9-1.el9 build changelog. XSS (CVE-2021-23648) Grafana is an ope ...
Continue Reading
March 01, 2024
Impact A Cross-Site Scripting (XSS) vulnerability has been discovered on the OAuth login page. An attacker could trick a user to follow a specially crafted URL to the OAuth login page. This URL could ...
Continue Reading
February 29, 2024
Flask-AppBuilder is an application development framework, built on top of Flask. A Cross-Site Scripting (XSS) vulnerability has been discovered on the OAuth login page. An attacker could trick a user ...
Continue Reading
February 29, 2024
Back to Main
