Fortinet FortiAnalyzer SSO SAML authentication (FG-IR-25-198)

The version of FortiAnalyzer installed on the remote host is prior to tested version. It is, therefore, affected by a vulnerability as referenced in the FG-IR-25-198 advisory. - A concurrent execution using shared resource with improper synchronization 'Race Condition' vulnerability CWE-362 in...

CVE-2025-34142

CVE-2025-34142 : ETQ Reliance on the CG (legacy) platform is affected via the /resources/sessions/sso endpoint. The SAML handler processes XML without disabling external entity resolution, enabling XXE that could disclose sensitive files or enable SSRF. Remediation in the reports specifies disabl...

CVE-2025-34142 ETQ Reliance CG < SE.2025.1 / < 2025.1.2 XXE Injection in SSO SAML Handler

An XML External Entity XXE injection vulnerability exists in ETQ Reliance on the CG legacy platform within the /resources/sessions/sso endpoint. The SAML authentication handler processes XML input without disabling external entity resolution, allowing crafted SAML responses to invoke external...

HackerOne: Limited Open redirection using SSO-SAML

Hello, Endpoint: https://hackerone.com/users//saml/[email protected]&rememberme=true Recently, you have patched an open redirection issue which was reported as 171398. I found a bypass of that patch. Steps to reproduce: 1. Add following in comment/report :...

HackerOne: (HackerOne SSO-SAML) Login CSRF, Open Redirect, and Self-XSS Possible Exploitation

Summary: Login CSRF, Open Redirect, and Self-XSS Possible Exploitation through HackerOne SSO-SAML PoC - Go to █████; Use a browser window with clear cookies. Source-code: setTimeoutfunctiondocument.location.href = "https://hackerone.com/users/saml/signin?email=████&rememberme=true";, 5000; Impact...