simplesamlphp/simplesamlphp-module-casserver Security Advisories for v6.3.0 (2)
-
[HIGH] SimpleSAMLphp casserver FileSystemTicketStore path traversal allows out-of-ticket-directory read/unserialize and conditional deletion
PKSA-4zw8-rhj7-ftzt CVE-2026-46491 GHSA-jrrg-99xh-5j2q
Affected version: <=7.0.2
Reported by:
GitHub -
[MEDIUM] SimpleSAMLphp casserver: Open Redirect in logout
PKSA-5vs1-v1t7-v5tj CVE-2025-65954 GHSA-cvrm-5hp6-h523
Affected version: <6.3.1|>=7.0.0-rc1,<7.0.0-rc3
Reported by:
GitHub