Lucene search
RedhatCVELIST:CVE-2020-10748HistorySep 16, 2020 - 5:56 p.m.
CVE-2020-10748
2020-09-1617:56:07
CWE-79
redhat
www.cve.org
1
A flaw was found in Keycloak’s data filter, in version 10.0.1, where it allowed the processing of data URLs in some circumstances. This flaw allows an attacker to conduct cross-site scripting or further attacks.
CNA Affected
[
{
"product": "keycloak",
"vendor": "n/a",
"versions": [
{
"status": "affected",
"version": "keycloak 10.0.1"
}
]
}
]Related
prion
prion
Cross site scripting
2020-09-16 18:15:00
Cross site scripting
2023-12-14 22:15:00
cve
cve
CVE-2020-10748
2020-09-16 18:15:12
CVE-2023-6134
2023-12-14 22:15:44
github
github
Duplicate Advisory: Keycloak vulnerable to reflected XSS via wildcard in OIDC redirect_uri
2023-12-15 00:31:03
Cross-site Scripting in Keycloak
2022-02-09 00:56:37
nvd
nvd
CVE-2020-10748
2020-09-16 18:15:12
CVE-2023-6134
2023-12-14 22:15:44
osv
osv
Cross-site Scripting in Keycloak
2022-02-09 00:56:37
CVE-2023-6134
2023-12-14 22:15:44
cvelist
cvelist
CVE-2023-6134 Keycloak: reflected xss via wildcard in oidc redirect_uri
2023-12-14 21:42:12
redhatcve
redhatcve
CVE-2023-6134
2023-11-15 00:28:21
CVE-2020-10748
2020-07-02 12:20:40
redhat
redhat
(RHSA-2020:2813) Important: Red Hat Single Sign-On 7.4.1 security update
2020-07-02 13:17:12