Source: ProjectDiscovery Blog

ProjectDiscovery Blog Ruby-SAML / GitLab Authentication Bypass (CVE-2024-45409)

IntroductionIn this blog post, we will analyze CVE-2024-45409, a critical vulnerability impacting Ruby-SAML, OmniAuth-SAML libraries, which effectively affects GitLab. This vulnerability allows an attacker to bypass SAML authentication mechanisms and gain unauthorized access by exploiting a flaw in how SAML responses are handled. The issue arises due to weaknesses

Read full article »
ProjectDiscovery's Competitors | ProjectDiscovery's News | ProjectDiscovery's Financials
Stay up-to-date with the latest news on ProjectDiscovery
Est. Annual Revenue
$100K-5.0M
Est. Employees
25-100
Rishiraj Sharma's photo - Co-Founder & CEO of ProjectDiscovery

Co-Founder & CEO

Rishiraj Sharma

CEO Approval Rating

90/100

Read more
Stay up-to-date with the latest news on ProjectDiscovery