All 4 CVE vulnerabilities found in node-saml, with AI-generated Chinese analysis, references, and POCs.
Vendor: node-saml
| CVE ID | Title | CVSS | Severity | Published |
|---|---|---|---|---|
| CVE-2025-54369 | Node-SAML SAML Authentication Bypass CWE-87 | - | - | 2025-12-12 |
| CVE-2025-54419 | Node-SAML Contains SAML Signature Verification Vulnerability CWE-287 | 10.0 | Critical | 2025-07-28 |
| CVE-2023-40178 | @node-saml/node-saml's validatePostRequestAsync does not include checkTimestampsValidityError CWE-347 | 5.3 | Medium | 2023-08-23 |
| CVE-2022-39300 | Signature bypass via multiple root elements in node-SAML CWE-347 | 7.7 | High | 2022-10-13 |
All 4 known CVE vulnerabilities affecting node-saml with full Chinese analysis, references, and POCs where available.