Vulmon
Recent Vulnerabilities
Product List
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
simplesamlphp simplesamlphp 1.14.11 vulnerabilities and exploits
(subscribe to this query)
6.5
CVSSv2
CVE-2019-3465
Rob Richards XmlSecLibs, all versions prior to v3.0.3, as used for example by SimpleSAMLphp, performed incorrect validation of cryptographic signatures in XML messages, allowing an authenticated malicious user to impersonate others or elevate privileges by creating a crafted XML ...
Xmlseclibs Project Xmlseclibs
Debian Debian Linux 8.0
Debian Debian Linux 9.0
Debian Debian Linux 10.0
Simplesamlphp Simplesamlphp
15 Github repositories
5
CVSSv2
CVE-2018-6519
The SAML2 library prior to 1.10.4, 2.x prior to 2.3.5, and 3.x prior to 3.1.1 in SimpleSAMLphp has a Regular Expression Denial of Service vulnerability for fraction-of-seconds data in a timestamp.
Simplesamlphp Saml2
Debian Debian Linux 8.0
Debian Debian Linux 9.0
5
CVSSv2
CVE-2017-12874
The InfoCard module 1.0 for SimpleSAMLphp allows malicious users to spoof XML messages by leveraging an incorrect check of return values in signature validation utilities.
Simplesamlphp Infocard Module 1.0
Debian Debian Linux 8.0
Debian Debian Linux 7.0
Debian Debian Linux 9.0
CVSSv2
CVSSv2
CVSSv3
VMScore
Recommendations:
TCP
CVE-2024-4577
CVE-2024-2695
CVE-2024-31870
injection
CVE-2024-3813
arbitrary code
CVE-2024-27801
CVE-2024-30120
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
1
2