Security News > 2025 > March > GitHub Uncovers New ruby-saml Vulnerabilities Allowing Account Takeover Attacks
2025-03-13 12:26
Two high-severity security flaws have been disclosed in the open-source ruby-saml library that could allow malicious actors to bypass Security Assertion Markup Language (SAML) authentication protections. SAML is an XML-based markup language and open-standard used for exchanging authentication and authorization data between parties, enabling features like single sign-on (SSO), which allows
News URL
https://thehackernews.com/2025/03/github-uncovers-new-ruby-saml.html
Related news
- That massive GitHub supply chain attack? It all started with a stolen SpotBugs token (source)
- Airplay-enabled devices open to attack via “AirBorne” vulnerabilities (source)
- Ivanti Patches EPMM Vulnerabilities Exploited for Remote Code Execution in Limited Attacks (source)
- Premium WordPress 'Motors' theme vulnerable to admin takeover attacks (source)