View raw JSON
{
"slug": "onelogin-saml-sso",
"previous_version": "3.4.0",
"current_version": "3.6.0",
"new_findings": [
{
"pattern": "base64_decode",
"kind": "builtin",
"file": "php/lib/Saml2/Auth.php",
"line": 142,
"snippet": "$inResponseTo = OneLogin_Saml2_LogoutRequest::getID(gzinflate(base64_decode($_GET['SAMLRequest'])));",
"confidence": "medium"
},
{
"pattern": "gzinflate",
"kind": "builtin",
"file": "php/lib/Saml2/Auth.php",
"line": 142,
"snippet": "$inResponseTo = OneLogin_Saml2_LogoutRequest::getID(gzinflate(base64_decode($_GET['SAMLRequest'])));",
"confidence": "medium"
},
{
"pattern": "base64_decode",
"kind": "builtin",
"file": "php/lib/Saml2/LogoutResponse.php",
"line": 174,
"snippet": "if (!$objKey->verifySignature($signedQuery, base64_decode($_GET['Signature']))) {",
"confidence": "medium"
},
{
"pattern": "base64_decode",
"kind": "builtin",
"file": "php/lib/Saml2/LogoutRequest.php",
"line": 330,
"snippet": "if (!$objKey->verifySignature($signedQuery, base64_decode($_GET['Signature']))) {",
"confidence": "medium"
}
],
"new_finding_count": 4
}