← Back to CVE List
CVE-2018-20857
Published:
2019-07-26T12:15Z
Last Modified:
2024-11-21T04:02Z
Source:
MITRE CVE List
License:
MITRE-CVE-TOS
Zendesk Samlr before 2.6.2 allows an XML nodes comment attack such as a name_id node with
[email protected]
followed by <!---->. and then the attacker's domain name. > MITRE Terms of Use apply – see LICENSE‑MITRE.txt