keycloak-connect@4.6.0 vulnerabilities
Keycloak Connect Middleware
-
latest version
26.0.6
-
latest non vulnerable version
-
first published
10 years ago
-
latest version published
4 days ago
-
licenses detected
- >=0
Direct Vulnerabilities
Known vulnerabilities in the keycloak-connect package. This does not include vulnerabilities belonging to this package’s dependencies.
Automatically find and fix vulnerabilities affecting your projects. Snyk scans for vulnerabilities and provides fixes for free.Vulnerability | Vulnerable Version |
---|---|
keycloak-connect is a Identity and Access Management solution for modern Applications and Services. Affected versions of this package are vulnerable to Open Redirect.
via the Note: This package is deprecated and will be removed in the future. How to fix Open Redirect? Upgrade |
<21.0.1
|
keycloak-connect is an Identity and Access Management solution for modern Applications and Services. Affected versions of this package are vulnerable to Cross-site Scripting (XSS). The Keycloak NodeJS adapter did not support How to fix Cross-site Scripting (XSS)? Upgrade |
<10.0.0
|