pkg:npm/@node-saml/node-saml

All known vulnerabilities

• CRITICAL10.0CVE-2025-54419Node-SAML SAML Signature Verification Vulnerability
  from 0, < 5.1.0
• HIGH8.1CVE-2022-39299Signature bypass via multiple root elements
  from 0, < 4.0.0-beta.5
• MEDIUM5.3CVE-2023-40178@node-saml/node-saml's validatePostRequestAsync does not include checkTimestampsValidityError
  from 0, < 4.0.5
• —Node-SAML SAML Authentication Bypass
  from 0, < 5.1.0