CVE-2018-5387

Name of the Vulnerable Software and Affected Versions Wizkunde SAMLBase (affected versions not specified)

Description The issue arises from the incorrect utilization of XML DOM traversal and canonicalization APIs, which may allow an attacker to manipulate SAML data without invalidating its cryptographic signature. This could potentially enable the attacker to bypass authentication to SAML service providers.

Recommendations At the moment, there is no information about a newer version that contains a fix for this vulnerability.