In a few clicks we can analyze your entire application and see what components are vulnerable in your application, and suggest you quick fixes.
Test your applicationsUpgrade simplesamlphp/saml2-legacy to version 4.20.3 or higher.
Affected versions of this package are vulnerable to Improper Neutralization of Data within XPath Expressions ('XPath Injection') through the XPath Transform process. An attacker can cause the application to become unresponsive or crash by sending specially crafted messages that exploit this process.