Security Advisory

CVE-2015-20108

CVE vulnerability detail — eXtreme Datacenter Security Operations

Published 2023-05-27 00:00:00
Last updated 2025-01-14 18:39:03
Assigner mitre
State PUBLISHED

Description

xml_security.rb in the ruby-saml gem before 1.0.0 for Ruby allows XPath injection and code execution because prepared statements are not used.

← Browse all CVEs View on cve.org ↗