CVE

CVE-2018-7307

CVE-2018-7307

The Auth0 Auth0.js library before 9.3 has CSRF because it mishandles the case where the authorization response lacks the state parameter.

Source: CVE-2018-7307

Exit mobile version