| शीर्षक | XSS in Ethos Identity Service (EEID) with CAS |
|---|
| विवरण | A Reflected Cross-Site Scripting (XSS) vulnerability in the Ethos Identity CAS logout endpoint has been identified. This only applies to the product's integration with CAS; non-CAS deployments are not impacted.
[Affected Product Code Base]
Ethos Identity (EEID) 5.10.5 and all earlier versions - Fixed in Ethos Identity (EEID) 5.10.6 and later
https://elluciansupport.service-now.com/customer_center?id=community_blog&sys_id=3bc4c265476a25d008322172e36d434e
https://medium.com/@cyberninja717/reflected-cross-site-scripting-vulnerability-in-ellucian-ethos-identity-cas-logout-page-685bb1675dfb
|
|---|
| स्रोत | ⚠️ https://elluciansupport.service-now.com/customer_center?id=community_blog&sys_id=3bc4c265476a25d008322172e36d434e |
|---|
| उपयोगकर्ता | mikent (UID 43735) |
|---|
| सबमिशन | 19/05/2023 11:32 PM (3 साल पहले) |
|---|
| संयम | 20/05/2023 08:49 AM (9 hours later) |
|---|
| स्थिति | स्वीकृत |
|---|
| VulDB प्रविष्टि | 229596 [Ellucian Ethos Identity तक 5.10.5 /cas/logout url क्रॉस साइट स्क्रिप्टिंग] |
|---|
| अंक | 17 |
|---|