Vulnerabilities > Auth0 > Lock > Low

DATE CVE VULNERABILITY TITLE RISK
2020-08-20 CVE-2020-15119 Cross-site Scripting vulnerability in Auth0 Lock
In auth0-lock versions before and including 11.25.1, dangerouslySetInnerHTML is used to update the DOM.
network
auth0 CWE-79
3.5