Количество 2
Количество 2
CVE-2017-1000452
около 8 лет назад
An XML Signature Wrapping vulnerability exists in Samlify 2.2.0 and earlier, and in predecessor Express-saml2 which could allow attackers to impersonate arbitrary users.
CVSS3: 7.5
EPSS: Низкий
GHSA-8jjf-w7j6-323c
около 8 лет назад
Samlify vulnerable to Authentication Bypass by allowing tokens to be reused with different usernames
CVSS3: 7.5
EPSS: Низкий
Уязвимостей на страницу
20
Уязвимость | CVSS | EPSS | Опубликовано | |
|---|---|---|---|---|
 | CVE-2017-1000452 An XML Signature Wrapping vulnerability exists in Samlify 2.2.0 and earlier, and in predecessor Express-saml2 which could allow attackers to impersonate arbitrary users. | CVSS3: 7.5 | 0% Низкий | около 8 лет назад |
| GHSA-8jjf-w7j6-323c Samlify vulnerable to Authentication Bypass by allowing tokens to be reused with different usernames | CVSS3: 7.5 | 0% Низкий | около 8 лет назад |
Уязвимостей на страницу
20