PT-2026-41385 · Unknown · Simplesamlphp-Casserver

Published

2026-05-15

·

Updated

2026-05-27

·

CVE-2025-65954

CVSS v3.1

6.1

Medium

VectorAV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N
Name of the Vulnerable Software and Affected Versions SimpleSAMLphp-casserver versions prior to 6.3.1 SimpleSAMLphp-casserver versions prior to 7.0.0
Description The logout endpoint accepts a url query parameter for redirection. The server treats this URL as trusted and, depending on the configuration, either redirects the browser to that address or displays a logout page containing a link to the specified URL. This occurs when the configuration has 'enable logout' set to true, and is more severe when 'skip logout page' is also set to true.
Recommendations Update to version 6.3.1. Update to version 7.0.0.

Exploit

Fix

Open Redirect

Found an issue in the description? Have something to add? Feel free to write us 👾

Weakness Enumeration

Related Identifiers

CVE-2025-65954
GHSA-CVRM-5HP6-H523

Affected Products

Simplesamlphp-Casserver