Vulnerabilities > Gluu

DATE	CVE	VULNERABILITY TITLE	RISK
2022-09-06	CVE-2022-36663	Server-Side Request Forgery (SSRF) vulnerability in Gluu Oxauth Gluu Oxauth before v4.4.1 allows attackers to execute blind SSRF (Server-Side Request Forgery) attacks via a crafted request_uri parameter. network low complexity gluu CWE-918 critical	9.8
2020-02-16	CVE-2020-9012	Cross-site Scripting vulnerability in Gluu Server 4.0 A cross-site scripting (XSS) vulnerability in the Import People functionality in Gluu Identity Configuration 4.0 allows remote attackers to inject arbitrary web script or HTML via the filename parameter. network low complexity gluu CWE-79	6.1

Vulnerabilities > Gluu {"@context":"https://schema.org","@type":"BreadcrumbList","itemListElement":[{"@type":"ListItem","position":1,"name":"Vulnerabilities","item":"https://cyber.vumetric.com/vulns/"},{"@type":"ListItem","position":2,"name":"Gluu"}]}