Embed Notice

HTML Code

<blockquote style="position: relative; padding-left: 55px;"><section><a href="https://infosec.exchange/users/patrickcmiller/statuses/114571354911979448">Patrick C Miller :donor: (patrickcmiller@infosec.exchange)'s status on Monday, 26-May-2025 09:42:20 JST</a><a href="https://infosec.exchange/@patrickcmiller" title="patrickcmiller@infosec.exchange"><img src="https://gnusocial.jp/avatar/109122-48-20241114065144.webp" width="48" height="48" alt="Patrick C Miller :donor:" style="position: absolute; left: 0; top: 0;">Patrick C Miller :donor:</a></section><article><p>Samlify bug lets attackers bypass single sign-on <a href="https://www.csoonline.com/article/3993262/samlify-bug-lets-attackers-bypass-single-sign-on.html" rel="nofollow">https://www.csoonline.com/article/3993262/samlify-bug-lets-attackers-bypass-single-sign-on.html</a></p></article><footer><a rel="bookmark" href="https://gnusocial.jp/conversation/5103266#notice-10010087">In conversation</a><time datetime="2025-05-26T09:42:20+09:00" title="Monday, 26-May-2025 09:42:20 JST">about 2 days ago</time> <span>from <span><a href="https://infosec.exchange/@patrickcmiller/114571354911979448" rel="external" title="Sent from infosec.exchange via ActivityPub">infosec.exchange</a></span></span><a href="https://infosec.exchange/@patrickcmiller/114571354911979448">permalink</a><h4>Attachments</h4><ol><li><article><header><div>Domain not in remote thumbnail source whitelist: www.csoonline.com</div><h5><a href="https://www.csoonline.com/article/3993262/samlify-bug-lets-attackers-bypass-single-sign-on.html">Samlify bug lets attackers bypass single sign-on</a></h5><div></div></header><div>The critical flaw can let an attacker authenticate as an admin with maximum system privileges.</div><footer></footer></article></li></ol></footer></blockquote>

Corresponding Notice

Embed this notice
Patrick C Miller :donor: (patrickcmiller@infosec.exchange)'s status on Monday, 26-May-2025 09:42:20 JST Patrick C Miller :donor:
Samlify bug lets attackers bypass single sign-on https://www.csoonline.com/article/3993262/samlify-bug-lets-attackers-bypass-single-sign-on.html
In conversationabout 2 days ago from infosec.exchangepermalink
Attachments
1. Domain not in remote thumbnail source whitelist: www.csoonline.com
  Samlify bug lets attackers bypass single sign-on
  The critical flaw can let an attacker authenticate as an admin with maximum system privileges.

Public

Embed Notice

HTML Code

Corresponding Notice