National Cyber Warfare Foundation (NCWF)

Critical Spring Authorization Server Issue Exposes Systems to XSS and SSRF Attacks
0 user ratings		2026-04-22 10:37:09
milo
Red Team (CNA)

A critical vulnerability, tracked as CVE-2026-22752, has been disclosed in Spring Security Authorization Server, affecting organizations running Dynamic Client Registration endpoints. The flaw allows attackers to inject malicious client metadata, potentially leading to Stored Cross-Site Scripting (XSS), Privilege Escalation, and Server-Side Request Forgery (SSRF) attacks. The vulnerability was responsibly reported by security researcher Kelvin Mbogo and officially disclosed […]


The post Critical Spring Authorization Server Issue Exposes Systems to XSS and SSRF Attacks appeared first on GBHackers Security | #1 Globally Trusted Cyber Security News Platform.



Divya

Source: gbHackers
Source Link: https://gbhackers.com/critical-spring-authorization-server-issue/

Comments
new comment
Nobody has commented yet. Will you be the first?
  
Forum
Red Team (CNA)


Copyright 2012 through 2026 - National Cyber Warfare Foundation - All rights reserved worldwide.