simplesamlphp is vulnerable to insecure random number generation. The library does not use a cryptographically secure number generator, using the first 16 bits of the hash of the given secret instead.
CPE | Name | Operator | Version |
---|---|---|---|
simplesamlphp/simplesamlphp | le | 1.14.11 |