CVE-2012-0908
Cross-site scripting (XSS) vulnerability in logout.php in SimpleSAMLphp 1.8.1 and possibly other versions before 1.8.2 allows remote attackers to inject arbitrary web script or HTML via the link_href parameter.
| Software | From | Fixed in |
|---|---|---|
simplesamlphp / simplesamlphp
|
1.8 | 1.8.x |
|
simplesamlphp / simplesamlphp
|
1.1 | 1.1.x |
|
simplesamlphp / simplesamlphp
|
1.6 | 1.6.x |
|
simplesamlphp / simplesamlphp
|
0.5 | 0.5.x |
|
simplesamlphp / simplesamlphp
|
1.6.2 | 1.6.2.x |
|
simplesamlphp / simplesamlphp
|
1.4 | 1.4.x |
|
simplesamlphp / simplesamlphp
|
1.6.1 | 1.6.1.x |
|
simplesamlphp / simplesamlphp
|
1.2 | 1.2.x |
|
simplesamlphp / simplesamlphp
|
- | 1.8.1.x |
|
simplesamlphp / simplesamlphp
|
1.7 | 1.7.x |
|
simplesamlphp / simplesamlphp
|
0.4 | 0.4.x |
|
simplesamlphp / simplesamlphp
|
1.6.3 | 1.6.3.x |
|
simplesamlphp / simplesamlphp
|
1.3 | 1.3.x |
|
simplesamlphp / simplesamlphp
|
1.5 | 1.5.x |
|
simplesamlphp / simplesamlphp
|
1.5.1 | 1.5.1.x |
|
simplesamlphp / simplesamlphp
|
1.0 | 1.0.x |
Deep Security Visibility Without the Complexity
SynScan provides clear, real-time security insights so you can monitor your attack surface, spot risks early, and act fast—without extra complexity.
- No setup fees
- 5-min deployment
- Cancel anytime