5 matches found
GHSA-JW9C-MFG7-9RX2
creationtimestamp| type| source ---|---|--- 2025-03-12 20:07:18+00:00| seen| https://github.blog/security/sign-in-as-anyone-bypassing-saml-sso-authentication-with-parser-differentials/...
GHSA-754F-8GM6-C4R2
creationtimestamp| type| source ---|---|--- 2025-03-12 20:07:18+00:00| seen| https://github.blog/security/sign-in-as-anyone-bypassing-saml-sso-authentication-with-parser-differentials/ 2025-03-12 21:40:48+00:00| published-proof-of-concept| https://t.me/DarkWebInformerCVEAlerts/7388 2025-03-13...
CVE-2024-9487
creationtimestamp| type| source ---|---|--- 2024-10-11 01:07:50+00:00| seen| https://t.me/cvedetector/7642 2024-10-15 10:13:12+00:00| seen| https://t.me/hackyourmom/9356 2024-10-16 07:08:52+00:00| seen| https://t.me/thehackernews/5737 2024-10-16 11:02:41+00:00| seen|...
CVE-2022-23131
In the case of instances where the SAML SSO authentication is enabled non-default, session data can be modified by a malicious actor, because a user login stored in the session was not verified. Malicious unauthenticated actor may exploit this issue to escalate privileges and gain admin access to...
CVE-2022-23131
In the case of instances where the SAML SSO authentication is enabled non-default, session data can be modified by a malicious actor, because a user login stored in the session was not verified. Malicious unauthenticated actor may exploit this issue to escalate privileges and gain admin access to...