Description
CSRF exists in the Auth0 authentication service through 14591 if the Legacy Lock API flag is enabled.
Remediation
References
http://www.securityfocus.com/bid/103695
https://auth0.com/docs/security/bulletins/cve-2018-6874
Related Vulnerabilities
CVE-2021-23648 Vulnerability in npm package @braintree/sanitize-url
CVE-2018-3737 Vulnerability in npm package sshpk
CVE-2015-1840 Vulnerability in maven package org.webjars.npm:jquery-ujs
CVE-2018-11693 Vulnerability in maven package org.webjars.npm:node-sass
CVE-2017-12795 Vulnerability in maven package org.openmrs.module:htmlformentry-omod