[{"data":1,"prerenderedAt":-1},["ShallowReactive",2],{"repo-stars":3,"vuln-CVE-2023-6134":6},{"stargazers_count":4,"fetched_at":5},7,"2026-06-05T14:55:33.319Z",{"id":7,"descriptions":8,"cisa":9,"weaknesses":10,"exploits":44,"aliases":54,"duplicate_of":9,"upstream":56,"downstream":57,"duplicates":70,"related":71,"reserved_at":9,"published_at":72,"modified_at":73,"state":74,"summary":75,"references_raw":83,"kevs":165,"epss":166,"epss_history":169,"metrics":429,"affected":442},"CVE-2023-6134","A flaw was found in Keycloak that prevents certain schemes in redirects, but permits them if a wildcard is appended to the token. This issue could allow an attacker to submit a specially crafted request leading to cross-site scripting (XSS) or further attacks. This flaw is the result of an incomplete fix for CVE-2020-10748.",null,[11],{"_key":12,"id":12,"name":13,"description":14,"type":15,"status":16,"abstraction":17,"likelihood_of_exploit":18,"capec":19},"CWE-79","Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting')","The product does not neutralize or incorrectly neutralizes user-controllable input before it is placed in output that is used as a web page that is served to other users.","weakness","Stable","Base","High",[20,24,28,32,36,40],{"id":21,"name":22,"techniques":23},"CAPEC-209","XSS Using MIME Type Mismatch",[],{"id":25,"name":26,"techniques":27},"CAPEC-588","DOM-Based XSS",[],{"id":29,"name":30,"techniques":31},"CAPEC-591","Reflected XSS",[],{"id":33,"name":34,"techniques":35},"CAPEC-592","Stored XSS",[],{"id":37,"name":38,"techniques":39},"CAPEC-63","Cross-Site Scripting (XSS)",[],{"id":41,"name":42,"techniques":43},"CAPEC-85","AJAX Footprinting",[],[45],{"_key":46,"name":47,"source":48,"url":49,"maturity":50,"reliability_score":51,"verified":52,"type":9,"platforms":53,"requires_auth":9,"exploitdb":9,"metasploit":9},"REF_DEBD5FA51FF1CC90","Exploit Reference (access.redhat.com)","reference","https://access.redhat.com/errata/RHSA-2023:7857","unknown",0.2,false,[],[55],"GHSA-cvg2-7c3j-g36j",[],[58,60,62,64,66,68],{"_key":59},"RHSA-2023:7854",{"_key":61},"RHSA-2023:7855",{"_key":63},"RHSA-2023:7856",{"_key":65},"RHSA-2024:0798",{"_key":67},"RHSA-2024:0799",{"_key":69},"RHSA-2024:0800",[],[],"2023-12-14T21:42:12.160Z","2026-02-25T18:19:50.968Z","Modified",{"cisa_kev":52,"cisa_ransomware":52,"cisa_vendor":9,"epss_severity":76,"epss_score":77,"severity":78,"severity_score":79,"severity_version":80,"severity_source":81,"severity_vector":82,"severity_status":74},"low",0.02468,"medium",5.4,"v3.1","nvd","CVSS:3.1/AV:N/AC:L/PR:L/UI:R/S:C/C:L/I:L/A:N",[84,93,97,101,105,109,113,117,121,125,129,133,137,142,147,151,156,160],{"url":85,"sources":86,"tags":89},"https://access.redhat.com/errata/RHSA-2023:7854",[87,81,88],"cve.org","osv_maven",[90,91,92],"Vendor Advisory","X Refsource REDHAT","WEB",{"url":94,"sources":95,"tags":96},"https://access.redhat.com/errata/RHSA-2023:7855",[87,81,88],[90,91,92],{"url":98,"sources":99,"tags":100},"https://access.redhat.com/errata/RHSA-2023:7856",[87,81,88],[90,91,92],{"url":49,"sources":102,"tags":103},[87,81,88],[90,91,104,92],"Exploit",{"url":106,"sources":107,"tags":108},"https://access.redhat.com/errata/RHSA-2023:7858",[87,81,88],[90,91,92],{"url":110,"sources":111,"tags":112},"https://access.redhat.com/errata/RHSA-2023:7860",[87,81,88],[90,91,92],{"url":114,"sources":115,"tags":116},"https://access.redhat.com/errata/RHSA-2023:7861",[87,81,88],[90,91,92],{"url":118,"sources":119,"tags":120},"https://access.redhat.com/errata/RHSA-2024:0798",[87,81],[90,91],{"url":122,"sources":123,"tags":124},"https://access.redhat.com/errata/RHSA-2024:0799",[87,81],[90,91],{"url":126,"sources":127,"tags":128},"https://access.redhat.com/errata/RHSA-2024:0800",[87,81],[90,91],{"url":130,"sources":131,"tags":132},"https://access.redhat.com/errata/RHSA-2024:0801",[87,81],[90,91],{"url":134,"sources":135,"tags":136},"https://access.redhat.com/errata/RHSA-2024:0804",[87,81],[90,91],{"url":138,"sources":139,"tags":140},"https://access.redhat.com/security/cve/CVE-2023-6134",[87,81,88],[141,91,90,92],"VDB Entry",{"url":143,"sources":144,"tags":145},"https://bugzilla.redhat.com/show_bug.cgi?id=2249673",[87,81,88],[146,91,92],"Issue Tracking",{"url":148,"sources":149,"tags":150},"https://github.com/keycloak/keycloak/security/advisories/GHSA-cvg2-7c3j-g36j",[88],[92],{"url":152,"sources":153,"tags":154},"https://nvd.nist.gov/vuln/detail/CVE-2023-6134",[88],[155],"Advisory",{"url":157,"sources":158,"tags":159},"https://github.com/keycloak/keycloak/commit/15a21bf8e4fb71f006ba9caf25b9c9d1d152cd20",[88],[92],{"url":161,"sources":162,"tags":163},"https://github.com/keycloak/keycloak",[88],[164],"PACKAGE",[],{"date":167,"score":77,"percentile":168},"2026-06-04",0.8554,[170,174,177,180,183,186,189,192,195,198,201,204,207,209,212,216,219,222,225,228,231,234,237,240,243,245,247,249,252,255,258,261,264,267,270,273,276,279,282,285,288,290,292,295,298,301,304,307,310,313,315,318,321,324,327,330,332,335,338,342,345,348,351,354,356,359,362,365,367,370,373,376,379,382,385,388,391,394,396,398,401,404,407,409,412,415,418,420,423,426],{"date":171,"score":172,"percentile":173},"2025-11-04",0.01411,0.79889,{"date":175,"score":172,"percentile":176},"2025-11-05",0.79891,{"date":178,"score":172,"percentile":179},"2025-11-06",0.79894,{"date":181,"score":172,"percentile":182},"2025-11-07",0.79906,{"date":184,"score":172,"percentile":185},"2025-11-08",0.79912,{"date":187,"score":172,"percentile":188},"2025-11-09",0.79908,{"date":190,"score":172,"percentile":191},"2025-11-10",0.79898,{"date":193,"score":172,"percentile":194},"2025-11-11",0.79903,{"date":196,"score":172,"percentile":197},"2025-11-12",0.79916,{"date":199,"score":172,"percentile":200},"2025-11-13",0.79923,{"date":202,"score":172,"percentile":203},"2025-11-14",0.79929,{"date":205,"score":172,"percentile":206},"2025-11-15",0.79927,{"date":208,"score":172,"percentile":206},"2025-11-16",{"date":210,"score":172,"percentile":211},"2025-11-17",0.79925,{"date":213,"score":214,"percentile":215},"2025-11-18",0.01391,0.78719,{"date":217,"score":214,"percentile":218},"2025-11-19",0.78728,{"date":220,"score":214,"percentile":221},"2025-11-20",0.78734,{"date":223,"score":172,"percentile":224},"2025-11-21",0.79943,{"date":226,"score":172,"percentile":227},"2025-11-22",0.79947,{"date":229,"score":172,"percentile":230},"2025-11-23",0.79939,{"date":232,"score":172,"percentile":233},"2025-11-24",0.79938,{"date":235,"score":172,"percentile":236},"2025-11-25",0.7994,{"date":238,"score":172,"percentile":239},"2025-11-26",0.79941,{"date":241,"score":172,"percentile":242},"2025-11-27",0.79945,{"date":244,"score":172,"percentile":233},"2025-11-28",{"date":246,"score":172,"percentile":224},"2025-11-29",{"date":248,"score":172,"percentile":242},"2025-11-30",{"date":250,"score":172,"percentile":251},"2025-12-01",0.80032,{"date":253,"score":172,"percentile":254},"2025-12-02",0.80035,{"date":256,"score":172,"percentile":257},"2025-12-03",0.80036,{"date":259,"score":172,"percentile":260},"2025-12-04",0.79948,{"date":262,"score":172,"percentile":263},"2025-12-05",0.79954,{"date":265,"score":172,"percentile":266},"2025-12-06",0.79957,{"date":268,"score":172,"percentile":269},"2025-12-07",0.79958,{"date":271,"score":172,"percentile":272},"2025-12-08",0.79962,{"date":274,"score":172,"percentile":275},"2025-12-09",0.79976,{"date":277,"score":172,"percentile":278},"2025-12-10",0.79999,{"date":280,"score":172,"percentile":281},"2025-12-11",0.80011,{"date":283,"score":172,"percentile":284},"2025-12-12",0.8003,{"date":286,"score":172,"percentile":287},"2025-12-13",0.80031,{"date":289,"score":172,"percentile":287},"2025-12-14",{"date":291,"score":172,"percentile":284},"2025-12-15",{"date":293,"score":172,"percentile":294},"2025-12-16",0.80039,{"date":296,"score":172,"percentile":297},"2025-12-17",0.80047,{"date":299,"score":172,"percentile":300},"2025-12-18",0.80066,{"date":302,"score":172,"percentile":303},"2025-12-19",0.80076,{"date":305,"score":172,"percentile":306},"2025-12-20",0.8007,{"date":308,"score":172,"percentile":309},"2025-12-21",0.80064,{"date":311,"score":172,"percentile":312},"2025-12-22",0.80063,{"date":314,"score":172,"percentile":312},"2025-12-23",{"date":316,"score":172,"percentile":317},"2025-12-24",0.8008,{"date":319,"score":172,"percentile":320},"2025-12-25",0.80099,{"date":322,"score":172,"percentile":323},"2025-12-26",0.80097,{"date":325,"score":172,"percentile":326},"2025-12-27",0.80139,{"date":328,"score":172,"percentile":329},"2025-12-28",0.80086,{"date":331,"score":172,"percentile":329},"2025-12-29",{"date":333,"score":172,"percentile":334},"2025-12-30",0.80093,{"date":336,"score":172,"percentile":337},"2025-12-31",0.80106,{"date":339,"score":340,"percentile":341},"2026-01-01",0.01902,0.82867,{"date":343,"score":340,"percentile":344},"2026-01-02",0.82862,{"date":346,"score":340,"percentile":347},"2026-01-03",0.82857,{"date":349,"score":340,"percentile":350},"2026-01-04",0.82775,{"date":352,"score":340,"percentile":353},"2026-01-05",0.82769,{"date":355,"score":340,"percentile":350},"2026-01-06",{"date":357,"score":340,"percentile":358},"2026-01-07",0.82776,{"date":360,"score":340,"percentile":361},"2026-01-08",0.82783,{"date":363,"score":340,"percentile":364},"2026-01-09",0.82784,{"date":366,"score":340,"percentile":364},"2026-01-10",{"date":368,"score":340,"percentile":369},"2026-01-11",0.8278,{"date":371,"score":340,"percentile":372},"2026-01-12",0.82778,{"date":374,"score":340,"percentile":375},"2026-01-13",0.82772,{"date":377,"score":340,"percentile":378},"2026-01-14",0.8279,{"date":380,"score":340,"percentile":381},"2026-01-15",0.82788,{"date":383,"score":340,"percentile":384},"2026-01-16",0.82796,{"date":386,"score":340,"percentile":387},"2026-01-17",0.82798,{"date":389,"score":340,"percentile":390},"2026-01-18",0.82795,{"date":392,"score":340,"percentile":393},"2026-01-19",0.82792,{"date":395,"score":340,"percentile":393},"2026-01-20",{"date":397,"score":340,"percentile":387},"2026-01-21",{"date":399,"score":340,"percentile":400},"2026-01-22",0.82804,{"date":402,"score":340,"percentile":403},"2026-01-23",0.82825,{"date":405,"score":340,"percentile":406},"2026-01-24",0.82832,{"date":408,"score":340,"percentile":403},"2026-01-25",{"date":410,"score":340,"percentile":411},"2026-01-26",0.82824,{"date":413,"score":340,"percentile":414},"2026-01-27",0.8282,{"date":416,"score":340,"percentile":417},"2026-01-28",0.82822,{"date":419,"score":340,"percentile":411},"2026-01-29",{"date":421,"score":340,"percentile":422},"2026-01-30",0.8283,{"date":424,"score":340,"percentile":425},"2026-01-31",0.82836,{"date":427,"score":340,"percentile":428},"2026-02-01",0.82913,[430,436,440],{"source":87,"cvss_v2_0":9,"cvss_v3_0":9,"cvss_v3_1":431,"cvss_v4_0":9},{"baseScore":432,"baseSeverity":433,"vectorString":434,"impactScore":435,"exploitabilityScore":79},4.6,"MEDIUM","CVSS:3.1/AV:N/AC:L/PR:L/UI:R/S:U/C:L/I:L/A:N",4.2,{"source":81,"cvss_v2_0":9,"cvss_v3_0":9,"cvss_v3_1":437,"cvss_v4_0":9},{"baseScore":79,"baseSeverity":433,"vectorString":82,"impactScore":438,"exploitabilityScore":439},4.5,5.9,{"source":88,"cvss_v2_0":9,"cvss_v3_0":9,"cvss_v3_1":441,"cvss_v4_0":9},{"baseScore":432,"baseSeverity":9,"vectorString":434,"impactScore":435,"exploitabilityScore":79},[443,456,465,473,481,487],{"ecosystem":444,"name":445,"vendor":446,"product":447,"cpe_part":9,"purl_type":448,"purl_namespace":446,"purl_name":447,"source":9,"versions":449},"Maven","org.keycloak:keycloak-services","org.keycloak","keycloak-services","maven",[450],{"version":451,"is_range":452,"range_type":453,"version_start":9,"version_start_type":9,"version_end":454,"version_end_type":455,"fixed_in":9},"lt23_0_3",true,"ecosystem","23.0.3","excluding",{"ecosystem":9,"name":457,"vendor":458,"product":457,"cpe_part":459,"purl_type":9,"purl_namespace":9,"purl_name":9,"source":9,"versions":460},"keycloak","redhat","a",[461],{"version":462,"is_range":452,"range_type":463,"version_start":9,"version_start_type":9,"version_end":464,"version_end_type":455,"fixed_in":9},"lt22.0.7","cpe","22.0.7",{"ecosystem":9,"name":466,"vendor":458,"product":467,"cpe_part":459,"purl_type":9,"purl_namespace":9,"purl_name":9,"source":9,"versions":468},"openshift container platform","openshift_container_platform",[469,471],{"version":470,"is_range":52,"range_type":463,"version_start":9,"version_start_type":9,"version_end":9,"version_end_type":9,"fixed_in":9},"4.11",{"version":472,"is_range":52,"range_type":463,"version_start":9,"version_start_type":9,"version_end":9,"version_end_type":9,"fixed_in":9},"4.12",{"ecosystem":9,"name":474,"vendor":458,"product":475,"cpe_part":459,"purl_type":9,"purl_namespace":9,"purl_name":9,"source":9,"versions":476},"openshift container platform for power","openshift_container_platform_for_power",[477,479],{"version":478,"is_range":52,"range_type":463,"version_start":9,"version_start_type":9,"version_end":9,"version_end_type":9,"fixed_in":9},"4.9",{"version":480,"is_range":52,"range_type":463,"version_start":9,"version_start_type":9,"version_end":9,"version_end_type":9,"fixed_in":9},"4.10",{"ecosystem":9,"name":482,"vendor":458,"product":483,"cpe_part":459,"purl_type":9,"purl_namespace":9,"purl_name":9,"source":9,"versions":484},"openshift container platform ibm z systems","openshift_container_platform_ibm_z_systems",[485,486],{"version":478,"is_range":52,"range_type":463,"version_start":9,"version_start_type":9,"version_end":9,"version_end_type":9,"fixed_in":9},{"version":480,"is_range":52,"range_type":463,"version_start":9,"version_start_type":9,"version_end":9,"version_end_type":9,"fixed_in":9},{"ecosystem":9,"name":488,"vendor":458,"product":489,"cpe_part":459,"purl_type":9,"purl_namespace":9,"purl_name":9,"source":9,"versions":490},"single sign-on","single_sign-on",[491,494],{"version":492,"is_range":452,"range_type":463,"version_start":9,"version_start_type":9,"version_end":493,"version_end_type":455,"fixed_in":9},"lt7.6","7.6",{"version":495,"is_range":52,"range_type":463,"version_start":9,"version_start_type":9,"version_end":9,"version_end_type":9,"fixed_in":9},"na"]