Is IDmelon WebLogin safe?
Clean risk
IDmelon WebLogin accepts unauthenticated postMessages from any webpage and can redirect its backend API calls to an attacker-controlled server.
0Risk
AI-generated. Findings may contain errors. Those marked Verified have been manually reviewed.
Publishers can request a review.