Medium

DATE	CVE	VULNERABILITY TITLE	RISK
2018-01-02	CVE-2017-1000452	XML Injection (aka Blind XPath Injection) vulnerability in Samlify Project Samlify An XML Signature Wrapping vulnerability exists in Samlify 2.2.0 and earlier, and in predecessor Express-saml2 which could allow attackers to impersonate arbitrary users. network samlify-project CWE-91	6.0

CVE is a registered MITRE Corporation trademark and MITRE's CVE website is the authoritative source of CVE content. CWE is a registered MITRE Corporation trademark and MITRE's CWE website is the authoritative source of CWE content.