CVE-2018-11647

CVE-2018-11647

EPSS 0.9%

index.js in oauth2orize-fprm before 0.2.1 has XSS via a crafted URL.

Affected products

Want to know if your infrastructure is exposed to this?

Talk to TrueHacking →

References

https://github.com/jaredhanson/oauth2orize-fprm/blob/master/SECURITY-NOTICE.md https://github.com/jaredhanson/oauth2orize-fprm/commit/2bf9faee787eb004abbdfb6f4cc2fb06653defd5