Java Open Single Sign-On Project Home (JOSSO) allows remote malicious users to forge messages and bypass authentication via a SAML assertion that lacks a Signature element, aka a "Signature exclusion attack."
Vulnerable Product | Search on Vulmon | Subscribe to Product |
---|---|---|
josso java open single sign-on project home - |