CVE-2020-9437
N/A
N/A
Summary
SecureAuth.aspx in SecureAuth IdP 9.3.0 suffers from a client-side template injection that allows for script execution, in the same manner as XSS.
Affected Software
| Vendor | Product | Version Range | Status |
|---|---|---|---|
| n/a | n/a | n/a | affected |
Weaknesses
- n/a
ADP Enrichment
CVE Program Container
Additional References
- https://know.bishopfox.com/advisories
- https://docs.secureauth.com/display/SID/SecureAuth+IdP+Latest+Releases
- https://labs.bishopfox.com/advisories/secureauth-version-9.3
References
- https://know.bishopfox.com/advisories
- https://docs.secureauth.com/display/SID/SecureAuth+IdP+Latest+Releases
- https://labs.bishopfox.com/advisories/secureauth-version-9.3
Feedback
Was this page helpful?
Glad to hear it! Please tell us how we can improve.
Sorry to hear that. Please tell us how we can improve.