jkcso
@jkcso.bsky.social
📤 138
📥 2
📝 0
I make cyber security easy for devs at the GitHub Security Lab
reposted by
jkcso
GitHub Security Lab
11 months ago
In this blog post, we detail newly discovered authentication bypass vulnerabilities in the ruby-saml library used for single sign-on (SSO) via SAML on the service provider (application) side.
github.blog/security/sig...
loading . . .
Sign in as anyone: Bypassing SAML SSO authentication with parser differentials
Critical authentication bypass vulnerabilities were discovered in ruby-saml up to version 1.17.0. See how they were uncovered.
https://github.blog/security/sign-in-as-anyone-bypassing-saml-sso-authentication-with-parser-differentials/
0
7
6
you reached the end!!
feeds!
log in
