Server-Side Request Forgery 1 CVEs tagged.
This vulnerability in Keycloak's CIBA (Client Initiated Backchannel Authentication) feature allows attackers to make blind server-side requests to int...