Samlify Project: Security Vulnerabilities
An XML Signature Wrapping vulnerability exists in Samlify 2.2.0 and earlier, and in predecessor Express-saml2 which could allow attackers to impersonate arbitrary users.
CVSS Score
7.5
EPSS Score
0.002
Published
2018-01-02