!!! Overview
[{$pagename}] is when an [Attacker] sets up a [Malicious] [Endpoint]


[{$pagename}] in [OAuth 2.0] and [OpenID Connect] is a class of an [Attack] where information is returned in the [Authorization Response] in which the [OAuth Client] be tricked into using inconsistent sets of [metadata] from multiple [Authorization Servers], including potentially using a [token] [endpoint] that does not belong to the same [Authorization Server] as the authorization [endpoint] used.


Some Research publications refer to these as IdP Mix-Up and [{$pagename}] [attacks].

[{$pagename}] the [Attacker] acts as a [Man-In-The-Middle] between the [OAuth Client] and the "intended" [Authorization Server]

!! More Information
There might be more information for this subject on one of the following:
[{ReferringPagesPlugin before='*' after='\n' }]