In a few clicks we can analyze your entire application and see what components are vulnerable in your application, and suggest you quick fixes.
Test your applicationsLearn about Improper Verification of Signature vulnerabilities in an interactive lesson.
Start learningUpgrade samlify
to version 2.4.0 or higher.
samlify is a Highly configuarable Node.js SAML 2.0 library for Single Sign On.
Affected versions of this package are vulnerable to Improper Verification of Signature. An attacker could potentially wrap the signature of a SAML response, and insert a new username in the original token, making it appear as though a different user was authenticated.