Description
CSRF exists in the Auth0 authentication service through 14591 if the Legacy Lock API flag is enabled.
Remediation
References
http://www.securityfocus.com/bid/103695
https://auth0.com/docs/security/bulletins/cve-2018-6874
Related Vulnerabilities
CVE-2020-15156 Vulnerability in npm package nodebb-plugin-blog-comments
CVE-2022-25898 Vulnerability in maven package org.webjars.npm:jsrsasign
CVE-2022-43433 Vulnerability in maven package io.jenkins.plugins:screenrecorder
CVE-2021-37694 Vulnerability in npm package @asyncapi/java-spring-cloud-stream-template
CVE-2020-2270 Vulnerability in maven package org.jenkins-ci.plugins:clearcase-release