simplesamlphp/saml2 Security Advisories for v5.0.0-alpha.12 (2)
-
[HIGH] The SimpleSAMLphp SAML2 library incorrectly verifies signatures for HTTP-Redirect binding
PKSA-rxdv-j1j4-96fj CVE-2025-27773 GHSA-46r4-f8gj-xg56
Affected version: <=4.16.15|>=5.0.0-alpha.1,<=5.0.0-alpha.19
Reported by:
GitHub -
[HIGH] Validation of SignedInfo
PKSA-c17n-yzdt-bpbs CVE-2023-49087 GHSA-ww7x-3gxh-qm6r
Affected version: =5.0.0-alpha.12
Reported by:
GitHub