Lucene search
+L

15 matches found

redhatcve
redhatcve
added 2026/02/24 7:30 a.m.8 views

CVE-2026-2971

A vulnerability was found in a466350665 Smart-SSO up to 2.1.1. Affected by this issue is some unknown functionality of the file smart-sso-server/src/main/resources/templates/login.html of the component Login. Performing a manipulation of the argument redirectUri results in cross site scripting. T...

6.1CVSS3.6AI score0.00308EPSS
Exploits1References1
redhatcve
redhatcve
added 2026/02/24 7:30 a.m.6 views

CVE-2026-2972

A vulnerability was determined in a466350665 Smart-SSO up to 2.1.1. This affects the function Save of the file smart-sso-server/src/main/java/openjoe/smart/sso/server/controller/admin/UserController.java of the component Role Edit Page. Executing a manipulation can lead to cross site scripting. T...

5.4CVSS2.9AI score0.00259EPSS
Exploits1References1
osv
osv
added 2026/02/23 6:16 a.m.3 views

CVE-2026-2972

A vulnerability was determined in a466350665 Smart-SSO up to 2.1.1. This affects the function Save of the file smart-sso-server/src/main/java/openjoe/smart/sso/server/controller/admin/UserController.java of the component Role Edit Page. Executing a manipulation can lead to cross site scripting. T...

5.4CVSS3.9AI score0.00259EPSS
Exploits1References4
nvd
nvd
added 2026/02/23 5:16 a.m.13 views

CVE-2026-2971

A vulnerability was found in a466350665 Smart-SSO up to 2.1.1. Affected by this issue is some unknown functionality of the file smart-sso-server/src/main/resources/templates/login.html of the component Login. Performing a manipulation of the argument redirectUri results in cross site scripting. T...

6.1CVSS0.00308EPSS
Exploits1References4
osv
osv
added 2026/02/23 5:16 a.m.5 views

CVE-2026-2971

A vulnerability was found in a466350665 Smart-SSO up to 2.1.1. Affected by this issue is some unknown functionality of the file smart-sso-server/src/main/resources/templates/login.html of the component Login. Performing a manipulation of the argument redirectUri results in cross site scripting. T...

6.1CVSS4.2AI score0.00308EPSS
Exploits1References4
vulnrichment
vulnrichment
added 2026/02/23 5:2 a.m.5 views

CVE-2026-2972 a466350665 Smart-SSO Role Edit UserController.java save cross site scripting

A vulnerability was determined in a466350665 Smart-SSO up to 2.1.1. This affects the function Save of the file smart-sso-server/src/main/java/openjoe/smart/sso/server/controller/admin/UserController.java of the component Role Edit Page. Executing a manipulation can lead to cross site scripting. T...

4.8CVSS3.1AI score0.00259EPSS
Exploits1References4
attackerkb
attackerkb
added 2026/02/23 5:2 a.m.3 views

CVE-2026-2972

A vulnerability was determined in a466350665 Smart-SSO up to 2.1.1. This affects the function Save of the file smart-sso-server/src/main/java/openjoe/smart/sso/server/controller/admin/UserController.java of the component Role Edit Page. Executing a manipulation can lead to cross site scripting. T...

4.8CVSS3.1AI score0.00259EPSS
Exploits1References4Affected Software1
cve
cve
added 2026/02/23 5:2 a.m.14 views

CVE-2026-2972

A466350665 Smart-SSO up to 2.1.1 contains a cross-site scripting vulnerability in the Save function of smart-sso-server/src/main/java/openjoe/smart/sso/server/controller/admin/UserController.java (Role Edit Page). The flaw, triggered by manipulation, can be exploited remotely and has publicly dis...

5.4CVSS3.2AI score0.00259EPSS
Exploits1References4Affected Software1
cvelist
cvelist
added 2026/02/23 5:2 a.m.24 views

CVE-2026-2972 a466350665 Smart-SSO Role Edit UserController.java save cross site scripting

A vulnerability was determined in a466350665 Smart-SSO up to 2.1.1. This affects the function Save of the file smart-sso-server/src/main/java/openjoe/smart/sso/server/controller/admin/UserController.java of the component Role Edit Page. Executing a manipulation can lead to cross site scripting. T...

4.8CVSS0.00259EPSS
Exploits1References4
vulnrichment
vulnrichment
added 2026/02/23 4:32 a.m.3 views

CVE-2026-2971 a466350665 Smart-SSO Login login.html cross site scripting

A vulnerability was found in a466350665 Smart-SSO up to 2.1.1. Affected by this issue is some unknown functionality of the file smart-sso-server/src/main/resources/templates/login.html of the component Login. Performing a manipulation of the argument redirectUri results in cross site scripting. T...

5.3CVSS4AI score0.00308EPSS
Exploits1References4
attackerkb
attackerkb
added 2026/02/23 4:32 a.m.7 views

CVE-2026-2971

A vulnerability was found in a466350665 Smart-SSO up to 2.1.1. Affected by this issue is some unknown functionality of the file smart-sso-server/src/main/resources/templates/login.html of the component Login. Performing a manipulation of the argument redirectUri results in cross site scripting. T...

5.3CVSS3.6AI score0.00308EPSS
Exploits1References4Affected Software1
cvelist
cvelist
added 2026/02/23 4:32 a.m.30 views

CVE-2026-2971 a466350665 Smart-SSO Login login.html cross site scripting

A vulnerability was found in a466350665 Smart-SSO up to 2.1.1. Affected by this issue is some unknown functionality of the file smart-sso-server/src/main/resources/templates/login.html of the component Login. Performing a manipulation of the argument redirectUri results in cross site scripting. T...

5.3CVSS0.00308EPSS
Exploits1References4
ptsecurity
ptsecurity
added 2026/02/23 12:0 a.m.17 views

PT-2026-21497

A vulnerability was found in a466350665 Smart-SSO up to 2.1.1. Affected by this issue is some unknown functionality of the file smart-sso-server/src/main/resources/templates/login.html of the component Login. Performing a manipulation of the argument redirectUri results in cross site scripting. T...

5.3CVSS3.9AI score0.00308EPSS
Exploits1References5
cnnvd
cnnvd
added 2026/02/23 12:0 a.m.9 views

Smart-SSO 代码注入漏洞

Smart-SSO is an authorization and authentication tool developed by Joe as a personal project. Versions of Smart-SSO 2.1.1 and earlier contained a code injection vulnerability. This vulnerability stemmed from incorrect operations on the function “Save” in the file...

5.4CVSS5.7AI score0.00259EPSS
Exploits1References4
cnnvd
cnnvd
added 2026/02/23 12:0 a.m.8 views

Smart-SSO 代码注入漏洞

Smart-SSO is an authorization and authentication tool developed by Joe as a personal project. Versions of Smart-SSO 2.1.1 and earlier contained a code injection vulnerability. This vulnerability stemmed from incorrect handling of the redirectUri parameter in the...

6.1CVSS5.7AI score0.00308EPSS
Exploits1References4
Rows per page
Query Builder