A flaw was found in Keycloak's data filter, in version 10.0.1, where it allowed the processing of data URLs in some circumstances. This flaw allows an malicious user to conduct cross-site scripting or further attacks.
Vulnerable Product | Search on Vulmon | Subscribe to Product |
---|---|---|
redhat keycloak 10.0.1 |
||
redhat single sign-on |