simplesamlphp/saml2 is vulnerable to denial of service (DoS) attacks and spoofed SAML responses. It mishandles the conversion of return values to boolean which allows attackers to perform these attacks.
CPE | Name | Operator | Version |
---|---|---|---|
simplesamlphp/saml2 | le | 1.9 | |
simplesamlphp/saml2 | le | 2.3.2 | |
simplesamlphp/saml2 | le | 1.10.2 |