CVE-2024-5478 – Cross-site Scripting (XSS) in SAML metadata endpoint in lunary-ai/lunary

https://notcve.org/view.php?id=CVE-2024-5478

06 Jun 2024 — A Cross-site Scripting (XSS) vulnerability exists in the SAML metadata endpoint `/auth/saml/${org?.id}/metadata` of lunary-ai/lunary version 1.2.7. The vulnerability arises due to the application's failure to escape or validate the `orgId` parameter supplied by the user before incorporating it into the generated response. Specifically, the endpoint generates XML responses for SAML metadata, where the `orgId` parameter is directly embedded into the XML structure without proper sanitization or validation. Thi... • https://huntr.com/bounties/e899f496-d493-4c06-b596-cb0a88ad451b • CWE-79: Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') •