LemonLDAP::NG SAML XML Signature Wrapping Security Vulnerability

LemonLDAP::NG SAML XML Signature Wrapping Security Vulnerability

LemonLDAP::NG is prone to a security vulnerability involving XML signature wrapping.

Successful exploits may allow unauthenticated attackers to construct specially crafted messages that can be successfully verified and contain arbitrary content. This may aid in further attacks.

LemonLDAP::NG versions prior to 1.2.3 are vulnerable.