2 matches found
CVE-2013-4390
Open redirect vulnerability in the AbstractAuthenticationFormServlet in the Auth Core org.apache.sling.auth.core bundle before 1.1.4 in Apache Sling allows remote attackers to redirect users to arbitrary web sites and conduct phishing attacks via a URL in the resource parameter, related to "a...
com.adobe.granite:com.adobe.granite.auth.oauth (>=0.0.12 <=1.0.0-R201304291556), com.adobe.granite:com.adobe.granite.auth.saml (>=0.1.14 <=0.2.2) +16 more potentially affected by CVE-2013-4390 via org.apache.sling:org.apache.sling.auth.core (>=1.0.0 <=1.1.0)
org.apache.sling:org.apache.sling.auth.core MAVEN version =1.0.0, =0.0.12, =0.1.14, =0.0.2, =1.0.0, =1.0.12, =1.0.12, =1.0.18, =5.4.0, =0.1.0, =2.2.0, =0.6.0, =1.0.0, =2.1.0, =1.1.0, =1.2.8 and more Source cves: CVE-2013-4390 Source advisory: OSV:GHSA-J7F2-CQVQ-5JCF...