Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
osvGoogleOSV:GHSA-G48F-PGWH-WWXX
HistoryMay 17, 2024 - 11:06 p.m.

onelogin/php-saml signature wrapping attacks

2024-05-1723:06:55
Google
osv.dev
3
onelogin
php-saml
signature wrapping attacks
vulnerability
unauthorized access
software

6.7 Medium

AI Score

Confidence

Low

JSON

Vulnerability in onelogin/php-saml versions prior to 2.10.0 allows signature Wrapping attacks which may result in a malicious user gaining unauthorized access to a system.

Related

veracode 1
friendsofphp 1
openvas 1
github 1
veracode
veracode
Authentication Bypass Via Signature Wrapping
2024-05-21 10:06:08
friendsofphp
friendsofphp
Vulnerability to Response Wrapping attacks resulting in a malicious user gaining unauthorized access to a system.
2016-10-04 15:39:00
openvas
openvas
SugarCRM php-saml Vulnerability
2017-09-26 00:00:00
github
github
onelogin/php-saml signature wrapping attacks
2024-05-17 23:06:55

6.7 Medium

AI Score

Confidence

Low

JSON
Related for OSV:GHSA-G48F-PGWH-WWXX
veracode1friendsofphp1openvas1github1