In a few clicks we can analyze your entire application and see what components are vulnerable in your application, and suggest you quick fixes.
Test your applicationsUpgrade simplesamlphp/saml2 to version 4.20.2, 5.0.6, 6.2.1 or higher.
Affected versions of this package are vulnerable to Improper Certificate Validation in the HTTPArtifact::receive process. An attacker can gain unauthorized access to arbitrary user accounts by crafting a forged unsigned assertion from a malicious or lower-trust identity provider within the same federation. This is only exploitable if a multi-IdP or federation deployment is used and a malicious or lower-trust IdP can issue HTTP-Artifact responses to the service provider.