Packagist (Composer) package
simplesamlphp/simplesamlphp-module-infocard
pkg:composer/simplesamlphp/simplesamlphp-module-infocard
Vulnerabilities (2)
| CVE | Sev | CVSS | KEV | Affected versions | Fixed in | Published | Description |
|---|---|---|---|---|---|---|---|
| CVE-2010-10004 | — | < 1.0 | 1.0 | Jan 9, 2023 | A vulnerability was found in Information Cards Module on simpleSAMLphp and classified as problematic. This issue affects some unknown processing. The manipulation leads to cross site scripting. The attack may be initiated remotely. Upgrading to version 1.0 is able to address this | ||
| CVE-2017-12874 | Hig | 7.5 | < 1.0.1 | 1.0.1 | Sep 1, 2017 | The InfoCard module 1.0 for SimpleSAMLphp allows attackers to spoof XML messages by leveraging an incorrect check of return values in signature validation utilities. |
- CVE-2010-10004Jan 9, 2023affected < 1.0fixed 1.0
A vulnerability was found in Information Cards Module on simpleSAMLphp and classified as problematic. This issue affects some unknown processing. The manipulation leads to cross site scripting. The attack may be initiated remotely. Upgrading to version 1.0 is able to address this
- affected < 1.0.1fixed 1.0.1
The InfoCard module 1.0 for SimpleSAMLphp allows attackers to spoof XML messages by leveraging an incorrect check of return values in signature validation utilities.