IDCVSSSummaryLast (major) updatePublished
CVE-2018-15121 6.8
An issue was discovered in Auth0 auth0-aspnet and auth0-aspnet-owin. Affected packages do not use or validate the state parameter of the OAuth 2.0 and OpenID Connect protocols. This leaves applications vulnerable to CSRF attacks during authentication
08-11-2018 - 17:59 29-08-2018 - 03:29
Back to Top Mark selected
Back to Top