0.004 Low
EPSS
Percentile
72.1%
PySAML2 is vulnerable to XML external entity attacks (XXE). The library does not look for SAML XML requests or responses resulting in the ability to attack.
github.com/rohe/pysaml2/commit/8c2b0529efce45b94209da938c89ebdf0a79748d
github.com/rohe/pysaml2/issues/366