Discussion

victorstackAI

Mar 11

SA-CONTRIB-2026-018: SAML SSO Reflected XSS — Script Injection on Your Login Page

SA-CONTRIB-2026-018 is a critical reflected XSS in an identity-adjacent module. Attacker-controlled input reflects back into browser execution paths on SSO endpoints — the exact surfaces users trust during login. 🚨 Critical — XSS on Authentication ...

victorstackai.hashnode.dev4 min read

#drupal #drupal-cms #review #security #wordpress

Responses

No responses yet.

Search Hashnode

SA-CONTRIB-2026-018: SAML SSO Reflected XSS — Script Injection on Your Login Page

Responses

Recent in Forum