VDB

GHSA-xmcw-mv9p-7pq2

GHSA-xmcw-mv9p-7pq2 REJECTED

Duplicate Advisory: Keycloak error_description injection on error pages that can trigger phishing attacks

Affected Products

VendorProductVersions
Mavenorg.keycloak:keycloak-admin-ui0, 26.3.0
Mavenorg.keycloak:keycloak-account-ui0, 26.3.0

Timeline

  • CVE Published
  • Mar 2, 2026 Distribution Patch
  • Mar 2, 2026 Distribution Patch
  • Mar 2, 2026 Distribution Patch
  • Mar 2, 2026 Distribution Patch
  • Mar 2, 2026 Security Advisory
  • Mar 2, 2026 Security Advisory
  • Mar 2, 2026 Security Advisory
  • Mar 2, 2026 Security Advisory
  • Mar 2, 2026 Security Advisory
  • Mar 2, 2026 Distribution Patch
  • Mar 2, 2026 Distribution Patch
Open in Interactive Console →
$ Console Community · 100/wk Open console ›