Vulnerabilities > Simplesamlphp > Simplesamlphp
DATE | CVE | VULNERABILITY TITLE | RISK |
---|---|---|---|
2017-02-07 | CVE-2016-3124 | Information Exposure vulnerability in Simplesamlphp The sanitycheck module in SimpleSAMLphp before 1.14.1 allows remote attackers to learn the PHP version on the system via unspecified vectors. | 5.0 |
2012-01-24 | CVE-2012-0908 | Cross-Site Scripting vulnerability in Simplesamlphp Cross-site scripting (XSS) vulnerability in logout.php in SimpleSAMLphp 1.8.1 and possibly other versions before 1.8.2 allows remote attackers to inject arbitrary web script or HTML via the link_href parameter. | 4.3 |
2012-01-24 | CVE-2012-0040 | Cross-Site Scripting vulnerability in Simplesamlphp Cross-site scripting (XSS) vulnerability in modules/core/www/no_cookie.php in SimpleSAMLphp 1.8.1 and possibly other versions before 1.8.2 allows remote attackers to inject arbitrary web script or HTML via the retryURL parameter. | 4.3 |