Back to CVE List

CVE-2026-44203

CRITICAL SEVERITY

CVSS Score & Metrics

Base Score
9.3 / 10

Vulnerability Description

OpenAM has pre-auth Reflected XSS in OAuth2 / OIDC response_mode=form_post via state parameter (FormPostResponse.ftl)

Vulnerability Details

Published Date
Last Modified
Source
GitHub
Vendor
maven
Product
org.openidentityplatform.openam:openam-oauth2

External References

Discussion (0)

Add Comment

No comments yet. Be the first!