Submit #756025: a466350665 Smart-SSO <=2.1.1 Reflected XSSinfo

Titlea466350665 Smart-SSO <=2.1.1 Reflected XSS
DescriptionSmart-SSO Reflected XSS vulnerabilities in redirectUri parameter ### Introduction [Smart-SSO](https://github.com/a466350665) is a lightweight, high-availability Single Sign-On (SSO) authentication and authorization center built on **SpringBoot** and **OAuth2** protocol with **RBAC** (Role-Based Access Control) permission design. Reflected XSS vulnerabilities occur when applications directly reflect user input to the response page without proper escaping or validation. ### Affected Versions Smart-SSO 2.1.1 and earlier
Source⚠️ https://www.notion.so/Smart-SSO-Reflected-XSS-vulnerabilities-in-redirectUri-parameter-304ea92a3c41805a8223c4ba75831802
User
 din4 (UID 50867)
Submission02/11/2026 02:22 (3 months ago)
Moderation02/22/2026 09:16 (11 days later)
StatusAccepted
VulDB entry347338 [a466350665 Smart-SSO up to 2.1.1 Login login.html redirectUri cross site scripting]
Points17

PreviousOverviewNext

Interested in the pricing of exploits?

See the underground prices here!