Security News GitHub Uncovers New ruby-saml Vulnerabilities Allowing Account Takeover Attacks TheHackerNews Daniel Bender Mar 13, 2025 ruby-saml vulnerabilities (CVE-2025-25291, CVE-2025-25292) allow SAML authentication bypass (CVSS 8.8). Update to versions 1.12.4 or 1.18.0 now.
