CVE-2021-28290

Published
View on NVD ↗
CVSS v3
6.1
MEDIUM
CVSS v2
4.3
MEDIUM
Affected
1
PROJECT

Description

A cross-site scripting (XSS) vulnerability in Skoruba IdentityServer4.Admin before 2.0.0 via unencoded value passed to the data-secret-value parameter.

skoruba/IdentityServer4.Admin
skoruba/IdentityServer4.Admin
The administration for the IdentityServer4 and Asp.Net Core Identity
GitHubGitHub
3.58K