jkcso
@jkcso.bsky.social
📤 139
📥 2
📝 0
I make cyber security easy for devs at the GitHub Security Lab
reposted by
jkcso
GitHub Security Lab
9 months ago
In this blog post, we detail newly discovered authentication bypass vulnerabilities in the ruby-saml library used for single sign-on (SSO) via SAML on the service provider (application) side.
github.blog/security/sig...
loading . . .
Sign in as anyone: Bypassing SAML SSO authentication with parser differentials
Critical authentication bypass vulnerabilities were discovered in ruby-saml up to version 1.17.0. See how they were uncovered.
https://github.blog/security/sign-in-as-anyone-bypassing-saml-sso-authentication-with-parser-differentials/
0
7
6
you reached the end!!
feeds!
log in
