CalvinBackup/CVEs-PoC
1
0
Fork 0
mirror of https://github.com/0xMarcio/cve.git synced 2026-05-11 20:52:49 +02:00
Code Issues Packages Projects Releases Wiki Activity
Files
9822fb37735000bda8766c00a6155fb6da059fd1
CVEs-PoC/2014/CVE-2014-0034.md
T
0xMarcio cb00e1339f Update CVE list 2025-09-29 21:09
2025-09-29 21:09:30 +02:00

679 B
Raw Blame History

CVE-2014-0034

Description

The SecurityTokenService (STS) in Apache CXF before 2.6.12 and 2.7.x before 2.7.9 does not properly validate SAML tokens when caching is enabled, which allows remote attackers to gain access via an invalid SAML token.

POC

Reference

No PoCs from references.

Github

Reference in New Issue View Git Blame Copy Permalink