CVE-2021-42567

Published December 7th, 2021

View on NVD ↗

CVSS v3

6.1

MEDIUM

CVSS v2

4.3

MEDIUM

Affected

1

PROJECT

Description

Apereo CAS through 6.4.1 allows XSS via POST requests sent to the REST API endpoints.

Apereo CAS - Identity & Single Sign On for all earthlings and beyond.

GitHub

11.3K