Description
It was found that Picketlink as shipped with Jboss Enterprise Application Platform 7.2 would accept an xinclude parameter in SAMLresponse XML. An attacker could use this flaw to send a URL to achieve cross-site scripting or possibly conduct further attacks.
Remediation
References
Related Vulnerabilities
Oracle Database Server CVE-2020-2735 Vulnerability (CVE-2020-2735)
OpenSSL Use After Free Vulnerability (CVE-2023-0215)
MyBB Other Vulnerability (CVE-2007-0622)
Drupal Insufficient Verification of Data Authenticity Vulnerability (CVE-2016-9450)
Squid Missing Release of Memory after Effective Lifetime Vulnerability (CVE-2021-28652)