Cross-site scripting (XSS) vulnerability in modules/core/www/no_cookie.php in SimpleSAMLphp 1.8.1 and possibly other versions prior to 1.8.2 allows remote malicious users to inject arbitrary web script or HTML via the retryURL parameter.
Vulnerable Product | Search on Vulmon | Subscribe to Product |
---|---|---|
simplesamlphp simplesamlphp 1.7 |
||
simplesamlphp simplesamlphp 1.6.3 |
||
simplesamlphp simplesamlphp 1.3 |
||
simplesamlphp simplesamlphp 1.2 |
||
simplesamlphp simplesamlphp |
||
simplesamlphp simplesamlphp 1.8 |
||
simplesamlphp simplesamlphp 1.5 |
||
simplesamlphp simplesamlphp 1.4 |
||
simplesamlphp simplesamlphp 1.6.2 |
||
simplesamlphp simplesamlphp 1.6.1 |
||
simplesamlphp simplesamlphp 1.1 |
||
simplesamlphp simplesamlphp 1.0 |
||
simplesamlphp simplesamlphp 1.6 |
||
simplesamlphp simplesamlphp 1.5.1 |
||
simplesamlphp simplesamlphp 0.5 |
||
simplesamlphp simplesamlphp 0.4 |