Tag
#Active Directory Federation Services
CVE-2021-41361: Active Directory Federation Server Spoofing Vulnerability
*How could an attacker exploit this vulnerability?* The ADFS (Active Directory Federation Services) services are vulnerable during the logout redirect request to cross-site scripting of the post logout redirect URI. An attacker who successfully exploited this vulnerability could leave an application using this ADFS library vulnerable to common XSS attacks.