CVE-2024-52806 | SimpleSAMLphp saml2 up to 4.6.13/5.0.0-alpha.17 XML Document xml external entity reference

Inserito da Angelo Barbosa | Dic 2, 2024 | CVE

A vulnerability was found in SimpleSAMLphp saml2 up to 4.6.13/5.0.0-alpha.17. It has been classified as critical. Affected is an unknown function of the component XML Document Handler. The manipulation leads to xml external entity reference.

This vulnerability is traded as CVE-2024-52806. It is possible to launch the attack remotely. There is no exploit available.

It is recommended to upgrade the affected component.

CVE-2024-52806 | SimpleSAMLphp saml2 up to 4.6.13/5.0.0-alpha.17 XML Document xml external entity reference

Post correlati

CVE-2024-42680 | Super Easy Enterprise Management System up to 1.0.0 Single Quotation Mark path traversal

CVE-2024-39326 | National Security Agency skills-service up to 2.12.5 video cross-site request forgery

CVE-2024-52354 | Cool Plugins Web Stories Widgets for Elementor Plugin up to 1.1 on WordPress cross site scripting

CVE-2024-1959 | Social Sharing Plugin Plugin up to 4.4.6.1 on WordPress Shortcode cross site scripting