VYPR

Esaml

by Handnot2

hex: esaml

CVEs (1)

  • CVE-2026-28809MedMar 23, 2026
    risk 0.27cvss 5.3epss 0.00

    XML External Entity (XXE) vulnerability in esaml (and its forks) allows an attacker to cause the system to read local files and incorporate their contents into processed SAML documents, and potentially perform SSRF via crafted SAML messages. esaml parses attacker-controlled…