simplesamlphp-module-infocard is vulnerable to authentication bypass. The library does not properly handle an error when verifying signatures, allowing a malicious user to pass an invalid signature to the system and become authenticated.
CPE | Name | Operator | Version |
---|---|---|---|
simplesamlphp/simplesamlphp-module-infocard | eq | 1.0 |