Lucene search
Sling Authentication Service Security Vulnerabilities
cve
A flaw in the org.apache.sling.auth.core.AuthUtil#isRedirectValid method in Apache Sling Authentication Service 1.4.0 allows an attacker, through the Sling login form, to trick a victim to send over their...
8.8CVSS
8.6AI Score
0.001EPSS
2017-12-18 08:29 PM
28