July 9, 2021 – Hacktive Security Blog

SA-CONTRIB-2021-036 NotSoSAML – Privilege Escalation via XML Signature Wrapping on MiniorangeSAML Drupal Plugin

Application Security

SA-CONTRIB-2021-036 NotSoSAML – Privilege Escalation via XML Signature Wrapping on MiniorangeSAML Drupal Plugin

Cristian Giustini

July 9, 2021January 18, 2022

This is a brief story about how we found a vulnerability on a drupal plugin that, when not configured correctly, could allow an authenticated user...

Recent Post

Exploiting a Quarantine UAF Mitigation on a Custom Allocator Challenge

A Reverse Engineering Walkthrough Journey

piADina – Italian Recipe for Internal Penetration Testing

CVE-2024-32651 – Server Side Template Injection (Changedetection.io)

🇮🇹 Conosciamo Christopher Bianchi – Penetration Tester / Red Teamer

Top Category