pkg:npm/passport-wsfed-saml2

4 total CVEsHIGH1MEDIUM1

✅ Check your installed version

All known vulnerabilities

  • HIGH8.1CVE-2017-16897passport-wsfed-saml2 vulnerable to Signature Bypass in SAML2 token
    from 0, < 3.0.5
  • MEDIUM5.3CVE-2022-23505Authentication Bypass for passport-wsfed-saml2
    from 0, < 4.6.3
  • CVE-2025-46573Passport-wsfed-saml2 allows SAML Authentication Bypass via Attribute Smuggling
    >= 3.0.5, < 4.6.4
  • CVE-2025-46572Passport-wsfed-saml2 allows SAML Authentication Bypass via Signature Wrapping
    >= 3.0.5, < 4.6.4