{"uuid": "1f5a34dd-0aaa-4aad-a60b-eee9edf77797", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2025-25291", "type": "seen", "source": "https://t.me/thehackernews/6486", "content": "\ud83d\udd34 ruby-saml Flaws Open SAML Auth to Hijacking\n\nGitHub Security Lab found CVE-2025-25291 & CVE-2025-25292 (CVSS 8.8) in ruby-saml, allowing attackers to bypass authentication using a valid signature.\n\n\ud83d\udd17 Read: https://thehackernews.com/2025/03/github-uncovers-new-ruby-saml.html\n\n\ud83d\udd11 Update now or risk account takeover.", "creation_timestamp": "2025-03-13T13:34:43.000000Z"}