VulnerableCode Package Details - pkg:composer/simplesamlphp/simplesamlphp@1.12.0

Staging Environment: Content and features may be unstable or change without notice.

Search for packages

Package details: pkg:composer/simplesamlphp/simplesamlphp@1.12.0

purl	pkg:composer/simplesamlphp/simplesamlphp@1.12.0

Next non-vulnerable version	1.14.1
Latest non-vulnerable version	1.17.0
Risk

Vulnerabilities affecting this package (2)

Vulnerability	Summary	Fixed by
VCID-cmqz-hp34-8kcx Aliases: 201710-01	Improper Certificate Validation Signature validation bypass in simplesamlphp.	1.14.17 Affected by 0 other vulnerabilities.
VCID-d1cm-xhdp-8qhv Aliases: GMS-2019-149	Cross-site Scripting Reflected Cross-Site-Scripting in simplesamlphp.	1.17.0 Affected by 0 other vulnerabilities.

Vulnerabilities fixed by this package (0)

Vulnerability	Summary	Aliases
This package is not known to fix vulnerabilities.

Date	Actor	Action	Vulnerability	Source	VulnerableCode Version
2026-06-02T04:39:25.501026+00:00	GitLab Importer	Affected by	VCID-d1cm-xhdp-8qhv	https://gitlab.com/gitlab-org/advisories-community/-/blob/main/packagist/simplesamlphp/simplesamlphp/GMS-2019-149.yml	38.6.0
2026-06-02T04:37:18.502107+00:00	GitLab Importer	Affected by	VCID-cmqz-hp34-8kcx	https://gitlab.com/gitlab-org/advisories-community/-/blob/main/packagist/simplesamlphp/simplesamlphp/201710-01.yml	38.6.0