simplesamlphp/simplesamlphp Security Advisories - Packagist | Ecosyste.ms: Advisories

simplesamlphp/simplesamlphp

A PHP implementation of a SAML 2.0 service provider and identity provider.

View on github.com · View on packagist.org

Security Advisories for simplesamlphp/simplesamlphp in packagist

Moderate

over 1 year ago

SimpleSAMLphp Information Disclosure vulnerability GSA_kwCzR0hTQS1wcG00LXIydmMtcGc3NM4AA8jK

packagist simplesamlphp/simplesamlphp

Moderate

over 1 year ago

SimpleSAMLphp Reflected Cross-site Scripting vulnerability GSA_kwCzR0hTQS12cHIzLWN3M2gtcHJ3OM4AA8jF

packagist simplesamlphp/simplesamlphp

Critical

over 1 year ago

SimpleSAMLphp signature validation bypass GSA_kwCzR0hTQS1manIyLXIybXAtNDg0cM4AA8jC

packagist simplesamlphp/simplesamlphp

Moderate

over 1 year ago

SimpleSAMLphp exposes credentials in session storage GSA_kwCzR0hTQS03d2g4LWpycTctcDI3Zs4AA8jB

packagist simplesamlphp/simplesamlphp

Moderate

over 1 year ago

SimpleSAMLphp Link Injection vulnerability GSA_kwCzR0hTQS12ODU4LTkyMmYtZmo5ds4AA8jA

packagist simplesamlphp/simplesamlphp

Moderate

over 3 years ago

SimpleSAMLphp Incorrect IV generation for encryption GSA_kwCzR0hTQS13dzN3LTU5MmotNXFyd84AAZbs

packagist simplesamlphp/simplesamlphp

Moderate

over 3 years ago

SimpleSAMLphp Unauthenticated encryption in CBC mode GSA_kwCzR0hTQS00NHByLW1nY3AtdjM2cs4AAZbj

packagist simplesamlphp/simplesamlphp

Moderate

over 3 years ago

SimpleSAMLphp Open redirection protection bypass GSA_kwCzR0hTQS0ycWZjLTQ4djUtNHc1aM4AAXaa

packagist simplesamlphp/simplesamlphp

Critical

over 3 years ago

SimpleSAMLphp Session fixation issue and authentication bypass in the authcrypt module GSA_kwCzR0hTQS1qOTZnLTQ3eDItNDZods4AAWrb

packagist simplesamlphp/simplesamlphp

Moderate

over 3 years ago

SimpleSAMLphp Information leakage issue in the sanitycheck module GSA_kwCzR0hTQS05MzI3LW1xbTYteDk3as4AAWQL

packagist simplesamlphp/simplesamlphp

High

over 3 years ago

SimpleSAMLphp Authentication context bypass in the multiauth module GSA_kwCzR0hTQS1xYzQzLTc4dmotdmc3cM4AATfU

packagist simplesamlphp/simplesamlphp

Moderate

over 3 years ago

SimpleSAMLphp XSS Vulnerability GSA_kwCzR0hTQS1mdjdtLXdjM3Ytd3Izd84AATe6

packagist simplesamlphp/simplesamlphp

High

over 3 years ago

SimpleSAMLphp Signature validation bypass GSA_kwCzR0hTQS1qNHFmLTN3MzMtOGNnY84AATev

packagist simplesamlphp/simplesamlphp

Moderate

over 3 years ago

SimpleSAMLphp allows timing side-channel attacks GSA_kwCzR0hTQS12ODgyLTk0OXgtNnYyOM4AATe3

packagist simplesamlphp/simplesamlphp

Critical

over 3 years ago

SimpleSAMLphp Use of insecure connection charset (sqlauth module) GSA_kwCzR0hTQS1xdjVwLTZ3cmMtNzl3Z84AAS_6

packagist simplesamlphp/simplesamlphp

Moderate

over 3 years ago

SimpleSAMLphp Invalid token creation and validation GSA_kwCzR0hTQS01OTdjLW1oN20tNDh2N84AASBA

packagist simplesamlphp/simplesamlphp

High

over 3 years ago

simpleSAMLphp incorrectly handles XML encryption GSA_kwCzR0hTQS01Zmo3LWY4eDMtcTJtY80-7Q

packagist simplesamlphp/simplesamlphp

Low

over 5 years ago

Information disclosure of source code in SimpleSAMLphp MDE2OlNlY3VyaXR5QWR2aXNvcnlHSFNBLTI0bTMtdzhnOS1qd3Bx

packagist simplesamlphp/simplesamlphp

Critical

almost 6 years ago

Incorrect persistent NameID generation in SimpleSAMLphp MDE2OlNlY3VyaXR5QWR2aXNvcnlHSFNBLWdwMm0tN2NmcC1oNmdm

packagist simplesamlphp/simplesamlphp

Moderate

almost 6 years ago

Incorrect signature verification in SimpleSAMLphp MDE2OlNlY3VyaXR5QWR2aXNvcnlHSFNBLXA5Y20tcjdqZy04cTNn

packagist simplesamlphp/simplesamlphp

Low

almost 6 years ago

Link injection in SimpleSAMLphp MDE2OlNlY3VyaXR5QWR2aXNvcnlHSFNBLTJyM3YtcTl4My03ZzQ2

packagist simplesamlphp/simplesamlphp

Low

almost 6 years ago

Cross-site scripting in SimpleSAMLphp MDE2OlNlY3VyaXR5QWR2aXNvcnlHSFNBLW1qOXAtdjJyOC13Zjh3

packagist simplesamlphp/simplesamlphp

Low

almost 6 years ago

Log injection in SimpleSAMLphp MDE2OlNlY3VyaXR5QWR2aXNvcnlHSFNBLTZnYzYtbTM2NC04NXd3

packagist simplesamlphp/simplesamlphp

Filter by Severity

Moderate 12 Low 4 Critical 4 High 3