Description
CSRF exists in the Auth0 authentication service through 14591 if the Legacy Lock API flag is enabled.
Remediation
References
https://auth0.com/docs/security/bulletins/cve-2018-6874
http://www.securityfocus.com/bid/103695
Related Vulnerabilities
CVE-2018-1192 Vulnerability in maven package org.cloudfoundry.identity:cloudfoundry-identity-uaa
CVE-2023-46499 Vulnerability in npm package @evershop/evershop
CVE-2018-1999027 Vulnerability in maven package org.jenkins-ci.plugins:saltstack
CVE-2014-0034 Vulnerability in maven package org.apache.cxf.services.sts:cxf-services-sts-core
CVE-2022-24431 Vulnerability in npm package abacus-ext-cmdline