TL;DR A critical flaw in OpenAM can let an attacker run code on the server. Tracked as...
SSO
TL;DR Zoho Corporation disclosed a critical ManageEngine account takeover flaw tracked as CVE-2026-11374. This CVSS 9.0 vulnerability...
In the modern enterprise, the Single Sign-On (SSO) portal is the master key to a company’s digital...
Critical Flaw in Wix’s New AI Platform Base44 Allowed Unauthorized Access to Private Enterprise Apps
Critical Flaw in Wix’s New AI Platform Base44 Allowed Unauthorized Access to Private Enterprise Apps
In a significant finding that highlights the risks associated with emerging AI development platforms, Wiz Research has...
A newly disclosed critical vulnerability in Node-SAML, a widely used SAML 2.0 authentication provider for Node.js, could...
A critical vulnerability has been discovered in the popular open-source Node.js library Node-SAML, used to implement SAML...
A newly disclosed vulnerability, CVE-2025-47949 (CVSSv4 9.9), has put countless Single Sign-On (SSO) implementations at risk by...