In JetBrains Hub before 2022.1.14434, SAML request takeover was possible.
The product does not sufficiently verify the origin or authenticity of data, in a way that causes it to accept invalid data.
Name | Vendor | Start Version | End Version |
---|---|---|---|
Hub | Jetbrains | * | 2022.1.14434 (excluding) |