keycloak-services: POST based reflected Cross Site Scripting vulnerability
A flaw has been found in Keycloak. The clients-registrations endpoint allows execution of javascript code on the client-side, which makes it vulnerable to a Cross-Site Scripting attack...