IdentityServer/IdentityServer3

Unavailable

This project is no longer available (or publicly accessible) from GitHub

Releases59

Frequency4 weeks 11 hours

Last Release over 7 years ago

Stars2.01K

OpenID Connect Provider and OAuth 2.0 Authorization Server Framework for ASP.NET 4.x/Katana

CVE History

CVE	Published	CVSS v3	CVSS v2
CVE-2017-12677 ↗	Aug 8, 2017Tuesday, 8 August 2017, 01:34	—	4.3 MEDIUM
IdentityServer3 2.4.x, 2.5.x, and 2.6.x before 2.6.1 has XSS in an Angular expression on the authorize response page, which might allow remote attackers to obtain sensitive information about the IdentityServer authorization response.