CVE-2024-25282

Опубликовано: 09 окт. 2024

Источник: nvd

Описание

Rejected reason: DO NOT USE THIS CANDIDATE NUMBER. Reason: This candidate was issued in error. Notes: All references and descriptions in this candidate have been removed to prevent accidental usage.

Связанные уязвимости

GHSA-698q-p785-rxxv

CVSS3: 5.4

github

больше 1 года назад

3DSecure 2.0 allows XSS in its 3DSMethod Authentication via a modified params parameter in a /rest/online request with a /redirect?action=challenge&txn= substring.