1.16.0
9 years ago
1 years ago
Known vulnerabilities in the python3-saml package. This does not include vulnerabilities belonging to this package’s dependencies.
Automatically find and fix vulnerabilities affecting your projects. Snyk scans for vulnerabilities and provides fixes for free.
Fix for freeVulnerability | Vulnerable Version |
---|---|
Affected versions of this package are vulnerable to Improper Input Validation. XPath injection is potentially possible, due to insufficient validation of the response message. How to fix Improper Input Validation? Upgrade | [,1.5.0) |
Affected versions of this package are vulnerable to Authentication Bypass. It incorrectly utilizes the results of XML DOM traversal and canonicalization APIs in such a way that an attacker may be able to manipulate the SAML data without invalidating the cryptographic signature, allowing the attack to potentially bypass authentication to SAML service providers. How to fix Authentication Bypass? Upgrade | [,1.4.0) |