CVE-2016-8638
- EPSS 7.14%
- Veröffentlicht 12.07.2017 13:29:00
- Zuletzt bearbeitet 20.04.2025 01:37:25
A vulnerability in ipsilon 2.0 before 2.0.2, 1.2 before 1.2.1, 1.1 before 1.1.2, and 1.0 before 1.0.3 was found that allows attacker to log out active sessions of other users. This issue is related to how it tracks sessions, and allows an unauthenti...
CVE-2015-5301
- EPSS 0.66%
- Veröffentlicht 17.11.2015 15:59:06
- Zuletzt bearbeitet 12.04.2025 10:46:40
providers/saml2/admin.py in the Identity Provider (IdP) server in Ipsilon 0.1.0 before 1.0.2 and 1.1.x before 1.1.1 does not properly check permissions, which allows remote authenticated users to cause a denial of service by deleting a SAML2 Service ...
- EPSS 0.39%
- Veröffentlicht 17.11.2015 15:59:01
- Zuletzt bearbeitet 12.04.2025 10:46:40
providers/saml2/admin.py in the Identity Provider (IdP) server in Ipsilon 0.1.0 before 1.0.1 does not properly check permissions to update the SAML2 Service Provider (SP) owner, which allows remote authenticated users to cause a denial of service via...