Download
| Alert*
DSA-1947 shibboleth-sp, shibboleth-sp2, opensaml2 -- missing input sanitising
Matt Elder discovered that Shibboleth, a federated web single sign-on system is vulnerable to script injection through redirection URLs
|