onelogin/php-saml signature wrapping attacks
Moderate severity
GitHub Reviewed
Published
May 17, 2024
to the GitHub Advisory Database
•
Updated May 17, 2024
Description
Published to the GitHub Advisory Database
May 17, 2024
Reviewed
May 17, 2024
Last updated
May 17, 2024
Vulnerability in onelogin/php-saml versions prior to 2.10.0 allows signature Wrapping attacks which may result in a malicious user gaining unauthorized access to a system.
References