CVE-2021-42567
EPSS 48.9%Cross-site Scripting in Apereo CAS
Published: 12/10/2021Modified: 11/30/2024
Description
Apereo CAS through 6.4.1 allows XSS via POST requests sent to the REST API endpoints.
Affected packages (1)
- Maven/org.apereo.cas:cas-server-core-webfrom 0, < 6.4.2