Vigilance Vulnerability Alerts - Keycloak: Cross Site Request Forgery via /login-actions/authenticate, analyzed on 12/06/2024
August 2024 by Vigilance.fr
An attacker can trigger a Cross Site Request Forgery of Keycloak, via /login-actions/authenticate, in order to force the victim to perform operations.
Plus d'information sur : https://vigilance.fr/vulnerability/Keycloak-Cross-Site-Request-Forgery-via-login-actions-authenticate-44507