Auth0 : Security Vulnerabilities, CVEs, (Information Leak) CVSS score >= 5

CVE-2017-17068

A cross-origin vulnerability has been discovered in the Auth0 auth0.js library affecting versions < 8.12. This vulnerability allows an attacker to acquire authenticated users' tokens and invoke services on a user's behalf if the target site or application uses a popup callback page with auth0.popup.callback().
Max CVSS
7.5
EPSS Score
0.22%
Published
2017-12-06
Updated
2021-04-28
1 vulnerabilities found
This web site uses cookies for managing your session, storing preferences, website analytics and additional purposes described in our privacy policy.
By using this web site you are agreeing to CVEdetails.com terms of use!
Accept Close