Lucene search
+L

6 matches found

RedhatCVE
RedhatCVE
added 2026/01/09 11:25 a.m.7 views

CVE-2021-28963

Shibboleth Service Provider before 3.2.1 allows content injection because template generation uses attacker-controlled parameters...

5.3CVSS7.1AI score0.01294EPSS
Exploits0References1
Tenable Nessus
Tenable Nessus
added 2021/04/23 12:0 a.m.33 views

Ubuntu 20.04 LTS : Shibboleth vulnerability (USN-4925-1)

The remote Ubuntu 20.04 LTS host has packages installed that are affected by a vulnerability as referenced in the USN-4925-1 advisory. Toni Huttunen and Fraktal Oy discovered that the Shibboleth Service provider allowed content injection due to allowing attacker-controlled parameters in error or...

5.3CVSS5.8AI score0.01294EPSS
Exploits0References2
OSV
OSV
added 2021/03/22 8:15 a.m.6 views

UBUNTU-CVE-2021-28963

Shibboleth Service Provider before 3.2.1 allows content injection because template generation uses attacker-controlled parameters...

5.3CVSS6AI score0.01294EPSS
Exploits0References8
UbuntuCve
UbuntuCve
added 2021/03/22 8:15 a.m.20 views

CVE-2021-28963

Shibboleth Service Provider before 3.2.1 allows content injection because template generation uses attacker-controlled parameters...

5.3CVSS6.1AI score0.01294EPSS
Exploits0References7
CVE
CVE
added 2021/03/22 7:2 a.m.65 views

CVE-2021-28963

CVE-2021-28963 affects Shibboleth Service Provider prior to 3.2.1, where template generation uses attacker-controlled parameters, enabling content injection. Multiple connected sources (Red Hat, Ubuntu USN-4925-1, Debian/OSV entries) corroborate the vulnerability and indicate affected deployments...

5.3CVSS5.3AI score0.01294EPSS
Exploits0References5Affected Software1
Debian CVE
Debian CVE
added 2021/03/22 7:2 a.m.29 views

CVE-2021-28963

Shibboleth Service Provider before 3.2.1 allows content injection because template generation uses attacker-controlled parameters...

5.3CVSS5.4AI score0.01294EPSS
Exploits0
Rows per page
Query Builder