| CVE-2017-12873 |
critical |
9.8 |
9.8 |
|
|
|
9y ago |
SimpleSAMLphp 1.7.0 through 1.14.10 might allow attackers to obtain sensitive information, gain unauthorized access, or have unspecified other impacts by leveraging incorrect persistent NameID genera… |
| CVE-2017-12868 |
critical |
9.8 |
9.8 |
|
|
|
9y ago |
The secureCompare method in lib/SimpleSAML/Utils/Crypto.php in SimpleSAMLphp 1.14.13 and earlier, when used with PHP before 5.6, allows attackers to conduct session fixation attacks or possibly bypas… |
| CVE-2017-12869 |
high |
7.5 |
7.5 |
|
|
|
9y ago |
The multiauth module in SimpleSAMLphp 1.14.13 and earlier allows remote attackers to bypass authentication context restrictions and use an authentication source defined in config/authsources.php via … |
| CVE-2016-9955 |
medium |
6.3 |
6.3 |
|
|
|
9y ago |
The SimpleSAML_XML_Validator class constructor in SimpleSAMLphp before 1.14.11 might allow remote attackers to spoof signatures on SAML 1 responses or possibly cause a denial of service (memory consu… |
| CVE-2017-12872 |
medium |
5.9 |
5.9 |
|
|
|
9y ago |
The (1) Htpasswd authentication source in the authcrypt module and (2) SimpleSAML_Session class in SimpleSAMLphp 1.14.11 and earlier allow remote attackers to conduct timing side-channel attacks by l… |
| CVE-2017-12871 |
medium |
5.9 |
5.9 |
|
|
|
9y ago |
The aesEncrypt method in lib/SimpleSAML/Utils/Crypto.php in SimpleSAMLphp 1.14.x through 1.14.11 makes it easier for context-dependent attackers to bypass the encryption protection mechanism by lever… |
| CVE-2017-12870 |
medium |
5.9 |
5.9 |
|
|
|
9y ago |
SimpleSAMLphp 1.14.12 and earlier make it easier for man-in-the-middle attackers to obtain sensitive information by leveraging use of the aesEncrypt and aesDecrypt methods in the SimpleSAML/Utils/Cry… |
| CVE-2017-12867 |
medium |
5.9 |
5.9 |
|
|
|
9y ago |
The SimpleSAML_Auth_TimeLimitedToken class in SimpleSAMLphp 1.14.14 and earlier allows attackers with access to a secret token to extend its validity period by manipulating the prepended time offset. |
| CVE-2016-3124 |
medium |
5.3 |
5.3 |
|
|
|
9y ago |
The sanitycheck module in SimpleSAMLphp before 1.14.1 allows remote attackers to learn the PHP version on the system via unspecified vectors. |
| CVE-2018-6520 |
unknown |
— |
— |
|
|
|
4y ago |
SimpleSAMLphp before 1.15.2 allows remote attackers to bypass an open redirect protection mechanism via crafted authority data in a URL. |
| CVE-2017-18121 |
unknown |
— |
— |
|
|
|
4y ago |
The consentAdmin module in SimpleSAMLphp through 1.14.15 is vulnerable to a Cross-Site Scripting attack, allowing an attacker to craft links that could execute arbitrary JavaScript code on the victim… |
| CVE-2017-18122 |
unknown |
— |
— |
|
|
|
4y ago |
A signature-validation bypass issue was discovered in SimpleSAMLphp through 1.14.16. A SimpleSAMLphp Service Provider using SAML 1.1 will regard as valid any unsigned SAML response containing more th… |
| CVE-2018-6521 |
unknown |
— |
— |
|
|
|
4y ago |
The sqlauth module in SimpleSAMLphp before 1.15.2 relies on the MySQL utf8 charset, which truncates queries upon encountering four-byte characters. There might be a scenario in which this allows remo… |
| CVE-2011-4625 |
unknown |
— |
— |
|
|
|
4y ago |
simplesamlphp before 1.6.3 (squeeze) and before 1.8.2 (sid) incorrectly handles XML encryption which could allow remote attackers to decrypt or forge messages. |
| CVE-2020-5301 |
unknown |
— |
— |
|
|
|
6y ago |
SimpleSAMLphp versions before 1.18.6 contain an information disclosure vulnerability. The module controller in `SimpleSAML\Module` that processes requests for pages hosted by modules, has code to ide… |
| CVE-2020-5226 |
unknown |
— |
— |
|
|
|
6y ago |
Cross-site scripting in SimpleSAMLphp before version 1.18.4. The www/erroreport.php script allows error reports to be submitted and sent to the system administrator. Starting with SimpleSAMLphp 1.18.… |
| CVE-2020-5225 |
unknown |
— |
— |
|
|
|
6y ago |
Log injection in SimpleSAMLphp before version 1.18.4. The www/erroreport.php script, which receives error reports and sends them via email to the system administrator, did not properly sanitize the r… |
