Software catalogue for Shibboleth
Latest security bulletins
| Secuity bulletin | Severity | Status | Published |
|---|---|---|---|
| SB2025090914: SQL injection in Shibboleth Service Provider | High | 09.09.2025 | |
| SB2025042853: Spoofing attack in OpenSAML C++ library | Medium | 28.04.2025 | |
| SB2023062027: Server-Side Request Forgery (SSRF) in Shibboleth xmltooling | Medium | 20.06.2023 | |
| SB2021031904: Arbitrary content injection in Shibboleth Service Provider | Low | 19.03.2021 | |
| SB2018022803: XXE attack in Shibboleth | Low | 28.02.2018 | |
| SB2017050405: Information disclosure in Drupal shib_auth module | Low | 04.05.2017 |