2 matches found
CVE-2026-29191
creationtimestamp| type| source ---|---|--- 2026-03-07 15:37:50+00:00| seen| https://bsky.app/profile/thehackerwire.bsky.social/post/3mgi5ttxdxg2h...
CVE-2026-29191 ZITADEL: 1-Click Account Takeover via XSS in /saml-post Endpoint
ZITADEL is an open source identity management platform. From version 4.0.0 to 4.11.1, a vulnerability in Zitadel's login V2 interface was discovered that allowed a possible account takeover via XSS in /saml-post Endpoint. This issue has been patched in version 4.12.0...