Vulnerability Information
Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
N/A
Vulnerability Description
The consentAdmin module in SimpleSAMLphp through 1.14.15 is vulnerable to a Cross-Site Scripting attack, allowing an attacker to craft links that could execute arbitrary JavaScript code on the victim's web browser.
CVSS Information
N/A
Vulnerability Type
N/A
Vulnerability Title
SimpleSAMLphp consentAdmin模块跨站脚本漏洞
Vulnerability Description
SimpleSAMLphp是一套实现了SAML 2.0服务提供者和标识提供者功能的PHP身份验证应用程序。consentAdmin module是其中的一个管理模块。 SimpleSAMLphp 1.14.15及之前版本中的consentAdmin模块存在跨站脚本漏洞。远程攻击者可通过制作链接利用该漏洞在用户的Web浏览器上执行任意的JavaScript代码。
CVSS Information
N/A
Vulnerability Type
N/A