passport-wsfed-saml2 is vulnerable to authentication bypass. The vulnerability exists in the retrieveToken
function of wsfederation.js
due to a lack of proper validation when more than one assertion is inside a token response for WS-Fed, which allows an attacker to bypass WSFed authentication.