Category: Code, Vulnerabilities

Shibboleth Example Login Page: POST Location Hijacking Vulnerability

Written by admin in Code, Vulnerabilities on Thu 09 December 2010. Tags: implementation fail, phishing, post hijacking, shibboleth, xss,

EDIT: This flaw, according to the lead Shibboleth developer, was discovered and patched in late 2008. It seems that a number of universities are still running outdated copies of the software, which is what I found in my research. If you are running the latest version of Shibboleth (2.2 ...

Continue reading »

Copyright Ben Schmidt 2015