Vulnerabilities > Auth0 > Lock > Low
DATE | CVE | VULNERABILITY TITLE | RISK |
---|---|---|---|
2020-08-20 | CVE-2020-15119 | Cross-site Scripting vulnerability in Auth0 Lock In auth0-lock versions before and including 11.25.1, dangerouslySetInnerHTML is used to update the DOM. | 3.5 |