Simplesamlphp Latest High Vulnerabilities

SimpleSAMLphp casserver FileSystemTicketStore path traversal allows out-of-ticket-directory read/unserialize and conditional deletion

CVE-2026-46491

SimplesamlPHPSimplesamlPHP-module-c...8.6HIGH

XML Security Library Vulnerability in SimpleSAMLphp

CVE-2026-32600

SimplesamlPHPXml-security8.2HIGH

Signature Confusion Vulnerability in SimpleSAMLphp SAML2 Library

CVE-2025-27773

SimplesamlPHPSaml28.6HIGH

Fixed XXE vulnerability in SAML2 library

CVE-2024-52806

SimplesamlPHPSaml28.3HIGH

Validation of SignedInfo

CVE-2023-49087

simplesamlphpxml-security7.5HIGH

XML Encryption Flaw in SimpleSAMLphp Affects Multiple Versions

CVE-2011-4625

SimplesamlPHPSimplesamlPHP7.5HIGH

Signature Validation Vulnerability in SimpleSAMLphp Library

CVE-2018-7711

SimplesamlPHPSimplesamlPHP8.1HIGH

SAML Assertion Signature Verification Issue in SimpleSAMLphp

CVE-2018-7644

SimplesamlPHPSimplesamlPHP7.5HIGH

Signature-Validation Bypass in SimpleSAMLphp by SimpleSAMLphp

CVE-2017-18122

SimplesamlPHPSimplesamlPHP8.1HIGH

Regular Expression Denial of Service in SimpleSAMLphp by Lasso Inc.

CVE-2018-6519

SimplesamlPHPSaml27.5HIGH

Access Bypass Vulnerability in SimpleSAMLphp's sqlauth Module

CVE-2018-6521

SimplesamlPHPSimplesamlPHP9.8CRITICAL

Information Disclosure Risk in SimpleSAMLphp by Launching Attacks on Misconfigured Identity Providers

CVE-2017-12873

SimplesamlPHPSimplesamlPHP9.8CRITICAL

Spoofing Vulnerability in InfoCard Module for SimpleSAMLphp by SimpleSAML

CVE-2017-12874

SimplesamlPHPInfocard Module7.5HIGH

Session Fixation Vulnerability in SimpleSAMLphp by SimpleSAML

CVE-2017-12868

SimplesamlPHPSimplesamlPHP9.8CRITICAL

Authentication Bypass Vulnerability in SimpleSAMLphp by Lasso

CVE-2017-12869

SimplesamlPHPSimplesamlPHP7.5HIGH

SAML Response Spoofing Vulnerability in SimpleSAMLphp

CVE-2016-9814

SimplesamlPHPSimplesamlPHP9.1CRITICAL

simplesamlphp Latest High & Critical Vulnerabilities

Vulnerability Published:

Sort By:

9 June 2026

SimpleSAMLphp casserver FileSystemTicketStore path traversal allows out-of-ticket-directory read/unserialize and conditional deletion

13 March 2026

XML Security Library Vulnerability in SimpleSAMLphp

11 March 2025

Signature Confusion Vulnerability in SimpleSAMLphp SAML2 Library

2 December 2024

Fixed XXE vulnerability in SAML2 library

30 November 2023

Validation of SignedInfo

6 November 2019

XML Encryption Flaw in SimpleSAMLphp Affects Multiple Versions

5 March 2018

Signature Validation Vulnerability in SimpleSAMLphp Library

SAML Assertion Signature Verification Issue in SimpleSAMLphp

2 February 2018

Signature-Validation Bypass in SimpleSAMLphp by SimpleSAMLphp

Regular Expression Denial of Service in SimpleSAMLphp by Lasso Inc.

Access Bypass Vulnerability in SimpleSAMLphp's sqlauth Module

1 September 2017

Information Disclosure Risk in SimpleSAMLphp by Launching Attacks on Misconfigured Identity Providers

Spoofing Vulnerability in InfoCard Module for SimpleSAMLphp by SimpleSAML

Session Fixation Vulnerability in SimpleSAMLphp by SimpleSAML

Authentication Bypass Vulnerability in SimpleSAMLphp by Lasso

17 February 2017

SAML Response Spoofing Vulnerability in SimpleSAMLphp