VYPR

Go modules package

github.com/tyktechnologies/tyk-identity-broker

pkg:golang/github.com/tyktechnologies/tyk-identity-broker

Vulnerabilities (1)

  • CVE-2021-23365MedApr 26, 2021
    affected < 1.1.1fixed 1.1.1

    The package github.com/tyktechnologies/tyk-identity-broker before 1.1.1 are vulnerable to Authentication Bypass via the Go XML parser which can cause SAML authentication bypass. This is because the XML parser doesn’t guarantee integrity in the XML round-trip (encoding/decoding XM