Package impact
npm / samlify
| CVE | Severity | CVSS | Risk | Flags | OS | Vendor | Published | Description |
|---|---|---|---|---|---|---|---|---|
| CVE-2026-46490 | high | — | 8.0 | 8d ago | samlify: XML Injection in AttributeValue Allows Privilege Escalation in Signed SAML Assertions | |||
| CVE-2025-47949 | unknown | — | — | 1y ago | samlify SAML Signature Wrapping attack | |||
| CVE-2017-1000452 | unknown | — | — | 9y ago | Samlify vulnerable to Authentication Bypass by allowing tokens to be reused with different usernames |