4 matches found
SimpleSAMLphp SAML2 数据伪造问题漏洞
SimpleSAMLphp SAML2 is a SAML2 PHP library from SimpleSAMLphp open source. A data forgery issue vulnerability exists in SimpleSAMLphp SAML2 version 4.17.0 and prior to version 5.0.0-alpha.20, which stems from a signature obfuscation attack in the HTTPRedirect binding that could cause an applicati...
json-jwt gem for Ruby Security Vulnerability
The json-jwt gem for Ruby is a Ruby-based JSON Web token. A security vulnerability exists in version 1.16.3 of the json-jwt gem for Ruby, which stems from a vulnerability that allows identity checks to be bypassed via a signature/cryptographic obfuscation attack...
go-jose signature obfuscation vulnerability
go-jose is a standard method for implementing JavaScript object signing and encryption . A security vulnerability exists in go-jose. As the program fails to verify the validity of the signature. An attacker could exploit the vulnerability to read unauthorized data...
Cisco Secure Intrusion Detection System Signature Obfuscation Vulnerability
...