2 matches found
Exploit for Improper Input Validation in Redhat Keycloak
CVE-2021-3754 This repository documents Vulnerability details...
CVE-2021-3754
CVE-2021-3754 affects Keycloak (and Red Hat SSO) where improper input validation allows a user to register with a username identical to an existing user’s email. Root cause: usernames are evaluated before emails, enabling email-as-username misuse. Impact documented in advisories includes password...