VYPR

Packagist (Composer) package

gogentooss/samlbase

pkg:composer/gogentooss/samlbase

Vulnerabilities (1)

  • CVE-2018-5387HigJul 24, 2018
    affected < 1.2.7fixed 1.2.7

    Wizkunde SAMLBase may incorrectly utilize the results of XML DOM traversal and canonicalization APIs in such a way that an attacker may be able to manipulate the SAML data without invalidating the cryptographic signature, allowing the attack to potentially bypass authentication t