CVE-2017-11429
CVE-2017-11429 affects Clever saml2-js (versions 2.0 and earlier). The issue arises from incorrect handling of XML DOM traversal and canonicalization APIs, allowing a remote attacker to modify SAML content without invalidating the cryptographic signature, potentially bypassing authentication to S...