Lucene search

Reflected XSS from the callback handler's error query parameter

🗓️ 28 Jun 2021 16:41:46Reported by GitHub Advisory DatabaseType

Vulnerability in "1.4.1" allows arbitrary code execution via callback handler's error query paramete

Reporter	Title	Published	Views	Family All 8
Prion	Cross site scripting	25 Jun 202117:15	–	prion
OSV	Reflected XSS from the callback handler's error query parameter	28 Jun 202116:46	–	osv
OSV	CVE-2021-32702	25 Jun 202117:15	–	osv
Node.js	Reflected XSS from the callback handler's error query parameter	28 Jun 202116:49	–	nodejs
Cvelist	CVE-2021-32702 Reflected XSS from the callback handler's error query parameter	25 Jun 202116:25	–	cvelist
NVD	CVE-2021-32702	25 Jun 202117:15	–	nvd
CVE	CVE-2021-32702	25 Jun 202117:15	–	cve
GitLab Advisory Database	Cross-site Scripting	25 Jun 202100:00	–	gitlab

Vulners

Node

auth0 nextjs\-auth0Range<1.4.2

Source	Link
github	www.github.com/auth0/nextjs-auth0/security/advisories/GHSA-954c-jjx6-cxv7
nvd	www.nvd.nist.gov/vuln/detail/CVE-2021-32702
github	www.github.com/auth0/nextjs-auth0/commit/6996e2528ceed98627caa28abafbc09e90163ccf
npmjs	www.npmjs.com/package/@auth0/nextjs-auth0
github	www.github.com/advisories/GHSA-954c-jjx6-cxv7

Transform Your Security Services

Elevate your offerings with Vulners' advanced Vulnerability Intelligence. Contact us for a demo and discover the difference comprehensive, actionable intelligence can make in your security strategy.

Book a live demo

28 Jun 2021 16:46Current

1.9Low risk

Vulners AI Score1.9

CVSS24.3

CVSS36.1 - 8

EPSS0.00581

CWE-79