CVE-2020-15119

2020-08-20T01:17:00
ID CVE-2020-15119
Type cve
Reporter cve@mitre.org
Modified 2020-08-25T12:51:00

Description

In auth0-lock versions before and including 11.25.1, dangerouslySetInnerHTML is used to update the DOM. When dangerouslySetInnerHTML is used, the application and its users might be exposed to cross-site scripting (XSS) attacks.