AIMOTO NORIHITO

2 exploits Active since Feb 2020

CVE-2019-20479 WRITEUP MEDIUM WRITEUP

Mod Auth Openidc < 2.4.1 - Open Redirect

A flaw was found in mod_auth_openidc before version 2.4.1. An open redirect issue exists in URLs with a slash and backslash at the beginning.

CVSS 6.1

View Code

CVE-2021-32792 WRITEUP LOW WRITEUP

Apache 2.x - mod_auth_openidc <2.4.9 - XSS

mod_auth_openidc is an authentication/authorization module for the Apache 2.x HTTP server that functions as an OpenID Connect Relying Party, authenticating users against an OpenID Connect Provider. In mod_auth_openidc before version 2.4.9, there is an XSS vulnerability in when using `OIDCPreservePost On`.

CVSS 3.1

View Code