CVE-2019-18350
In Ant Design Pro 4.0.0, a reflected XSS in the user/login redirect GET parameter affects the authorization component, allowing execution of JavaScript in the login after-action script. Red Hat and other linked sources confirm the same issue exists across vendors; the vulnerability is tied to the...