Lucene search
Mendixsso Security Vulnerabilities
cve
MendixSSO <= 2.1.1 contains endpoints that make use of the openid handler, which is suffering from a Cross-Site Scripting vulnerability via the URL path. This is caused by the reflection of user-supplied data without appropriate HTML escaping or output encoding. As a result, a JavaScript payload...
6.1CVSS
5.9AI Score
0.001EPSS
2021-01-06 03:15 PM
16
3