XML Spoofing Vulnerability in InfoCard Module 1.0 for SimpleSAMLphp

XML Spoofing Vulnerability in InfoCard Module 1.0 for SimpleSAMLphp

CVE-2017-12874 · MEDIUM Severity

AV:N/AC:L/AU:N/C:N/I:P/A:N

The InfoCard module 1.0 for SimpleSAMLphp allows attackers to spoof XML messages by leveraging an incorrect check of return values in signature validation utilities.

Learn more about our Web Application Penetration Testing UK.