Goal Reached Thanks to every supporter — we hit 100%!

Goal: 1000 CNY · Raised: 1000 CNY

100.0%
Buy Us a Coffee

CVE-2022-39299 PoC — Signature bypass via multiple root elements in Passport-SAML

Source
https://github.com/KaztoRay/CVE-2022-39299-Research
Associated Vulnerability
Title:Signature bypass via multiple root elements in Passport-SAML (CVE-2022-39299)
Description:Passport-SAML is a SAML 2.0 authentication provider for Passport, the Node.js authentication library. A remote attacker may be able to bypass SAML authentication on a website using passport-saml. A successful attack requires that the attacker is in possession of an arbitrary IDP signed XML element. Depending on the IDP used, fully unauthenticated attacks (e.g without access to a valid user) might also be feasible if generation of a signed message can be triggered. Users should upgrade to passport-saml version 3.2.2 or newer. The issue was also present in the beta releases of `node-saml` before version 4.0.0-beta.5. If you cannot upgrade, disabling SAML authentication may be done as a workaround.
Description
CVE-2022-39299 취약점에 대한 Research 정리
Readme
# CVE-2022-39299-Research
CVE-2022-39299 취약점에 대한 Research 정리
File Snapshot

 [4.0K]  /data/pocs/adce7408d3130b531a8de899682ac6a23a54575f
├── [251K]  CVE-2022-39299_(Passport-SAML_취약점)_(CWE-347).pdf
└── [  77]  README.md

0 directories, 2 files
Shenlong Bot has cached this for you
Remarks
    1. It is advised to access via the original source first.
    2. Local POC snapshots are reserved for subscribers — if the original source is unavailable, the local mirror is part of the paid plan.
    3. Mirroring, verifying, and maintaining this POC archive takes ongoing effort, so local snapshots are a paid feature. Your subscription keeps the archive online — thank you for the support. View subscription plans →