cve/CVE-2018-7307.md at 9cc2023bd8dbe0ab8c5f051fa9a43f1e04594987 - cve - 临风笛

admin/cve

mirror of https://github.com/0xMarcio/cve.git synced 2025-05-06 02:31:38 +00:00

0xMarcio 49bdc782b3 Update Sun May 26 14:27:04 CEST 2024

2024-05-26 14:27:05 +02:00

586 B

Raw Blame History

CVE-2018-7307

Description

The Auth0 Auth0.js library before 9.3 has CSRF because it mishandles the case where the authorization response lacks the state parameter.

POC

Reference

No PoCs from references.

Github

https://github.com/ARPSyndicate/cvemon