Reflected Cross Site Scripting (XSS) in Abacus OAuth Login 2019_01_r4_20191021_0000

Reflected Cross Site Scripting (XSS) in Abacus OAuth Login 2019_01_r4_20191021_0000

CVE-2019-19381 · MEDIUM Severity

CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N

oauth/oauth2/v1/saml/ in Abacus OAuth Login 2019_01_r4_20191021_0000 before prior to R4 (20.11.2019 Hotfix) allows Reflected Cross Site Scripting (XSS) via an error message.

Learn more about our Web Application Penetration Testing UK.