DRUPAL-CONTRIB-2026-031
See a problem?- Import Source
- https://github.com/DrupalSecurityTeam/drupal-advisory-database/blob/main/advisories/miniorange_saml/DRUPAL-CONTRIB-2026-031.json
- JSON Data
- https://api.osv.dev/v1/vulns/DRUPAL-CONTRIB-2026-031
- Aliases
-
- CVE-2026-5343
- Published
- 2026-04-01T16:38:14Z
- Modified
- 2026-04-02T14:13:13Z
- Summary
- [none]
- Details
-
This module enables you to perform SAML-protocol-based single-sign-on (SSO) on a Drupal site.
The module doesn't sufficiently block access, leading to a authentication bypass vulnerability.
- References
- Credits
-
-
- Tim de Jong | Freelance Drupal Developer (tim_dj)
-
Affected packages
Packagist:https://packages.drupal.org/8 / drupal/miniorange_saml
Package
- Name
- drupal/miniorange_saml
- Purl
- pkg:composer/drupal/miniorange_saml