Maven/Org.apereo.cas/Cas-Server-Core-Web | GitLab Advisory Database

Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting')

Apereo CAS through 6.4.1 allows XSS via POST requests sent to the REST API endpoints.