Home News Debian Security Advisory 1947 shibboleth-sp, shibboleth-sp2, opensaml2 – missing input sanitising

Debian Security Advisory 1947 shibboleth-sp, shibboleth-sp2, opensaml2 – missing input sanitising

December 6, 2009

Article Source Debian Security Advisories
December 6, 2009, 4:00 pm

Matt Elder discovered that Shibboleth, a federated web single sign-on system is vulnerable to script injection through redirection URLs. More details can be found in the Shibboleth advisory at http://shibboleth.internet2.edu/secadv/secadv_20091104.txt…

RELATED ARTICLESMORE FROM AUTHOR

Maintainer Confidential: Challenges and Opportunities One Year On

Bridging Design and Runtime Gaps: AsyncAPI in Event-Driven Architecture

Implementing OpenTelemetry Natively in an Event Broker

Innovation as a Catalyst in Telecommunications

Achieving Log Centralization and Analysis with Open Source SIEM and XDR: UTMStack

RELATED ARTICLES MORE FROM AUTHOR