CVE-2018-7307

CVE: CVE-2018-7307
Published: 2018-03-06T15:29Z
Description Language: en
Description: The Auth0 Auth0.js library before 9.3 has CSRF because it mishandles the case where the authorization response lacks the state parameter.
References:
https://auth0.com/docs/security/bulletins/cve-2018-7307