Authored by Google Security Research, Felix Wilhelm

Node-saml and its partner project passport-saml are vulnerable to an authentication bypass due to lax parsing of SAML responses.

advisories | CVE-2022-39299

RELATED ARTICLESMORE FROM AUTHOR