this post was submitted on 18 Mar 2025
1 points (100.0% liked)

Pulse of Truth

802 readers
1 users here now

Cyber Security news and links to cyber security stories that could make you go hmmm. The content is exactly as it is consumed through RSS feeds and wont be edited (except for the occasional encoding errors).

This community is automagically fed by an instance of Dittybopper.

founded 1 year ago
MODERATORS
[email protected]
1
SAML roulette: the hacker always wins (portswigger.net)
submitted 1 week ago by [email protected] to c/[email protected]
0 comments fedilink hide all child comments
 

Introduction In this post, we’ll show precisely how to chain round-trip attacks and namespace confusion to achieve unauthenticated admin access on GitLab Enterprise by exploiting the ruby-saml library

no comments (yet)
sorted by: hot top controversial new old
there doesn't seem to be anything here