Security advisory: XSS vulnerability in login redirect param ScnSocialAuth version 1.15.2 has been released and includes a security for this vulnerability. Fix has been applied in 4a00966 Affected versions All versions below 1.15.2 are affected. dev-master is fixed starting from 4a00966 Exploits Because of missing escaping of the URL param redirect a XSS attack is possible. For example: Setting the redirect param to β>GitHub.com<inpu%20type=βhiddenβ%20β would result in a link added to the login page. Resolution If you are using any version of ScnSocialAuth below 1.15.2 please upgrade immediately by running composer update. Credits The vulnerability was reported by @Danielss89 The original vulnerability in ZfcUser was discovered and fixed by @GyunerZeki (See ZF-Commons/ZfcUser#550) The text was updated successfully, but these errors were encountered: All reactions
CPE | Name | Operator | Version |
---|---|---|---|
socalnick/scn-social-auth | lt | 1.15.2 |