26.0.7
9 years ago
11 days ago
Known vulnerabilities in the keycloak-connect package. This does not include vulnerabilities belonging to this package’s dependencies.
Automatically find and fix vulnerabilities affecting your projects. Snyk scans for vulnerabilities and provides fixes for free.
Fix for freeVulnerability | Vulnerable Version |
---|---|
keycloak-connect is a Identity and Access Management solution for modern Applications and Services. Affected versions of this package are vulnerable to Open Redirect.
via the Note: This package is deprecated and will be removed in the future. How to fix Open Redirect? Upgrade | <21.0.1 |
keycloak-connect is an Identity and Access Management solution for modern Applications and Services. Affected versions of this package are vulnerable to Cross-site Scripting (XSS). The Keycloak NodeJS adapter did not support How to fix Cross-site Scripting (XSS)? Upgrade | <10.0.0 |