CVE List

CVE-2021-28963

Shibboleth Service Provider before 3.2.1 allows content injection because template generation uses attacker-controlled parameters.

Published March 22, 2021.

Affected software

Get alerts for Debian Debian Linux

Reference links