Security Advisory

CVE-2020-15119

CVE vulnerability detail — eXtreme Datacenter Security Operations

Published 2020-08-19 21:20:11

Last updated 2024-08-04 13:08:21

Assigner GitHub_M

State PUBLISHED

Description

In auth0-lock versions before and including 11.25.1, dangerouslySetInnerHTML is used to update the DOM. When dangerouslySetInnerHTML is used, the application and its users might be exposed to cross-site scripting (XSS) attacks.

← Browse all CVEs View on cve.org ↗