← Back to CVE List
CVE-2015-20108
Published:
2023-05-27T19:15Z
Last Modified:
2025-01-14T19:15Z
Source:
MITRE CVE List
License:
MITRE-CVE-TOS
xml_security.rb in the ruby-saml gem before 1.0.0 for Ruby allows XPath injection and code execution because prepared statements are not used. > MITRE Terms of Use apply – see LICENSE‑MITRE.txt