CVE 8.7 HIGH

samlify: XML Injection in AttributeValue Allows Privilege Escalation in Signed SAML Assertions_CVE-2026-46490

June 8, 2026 invoker category_cve

8.7 / 10

HIGH

CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:N/VI:H/VA:N/SC:N/SI:N/SA:N

Description

samlify is a Node.js library for SAML single sign-on. Prior to version 2.13.0, samlify’s template substitution only escapes attribute contexts. Values inserted into element text (e.g., <saml:AttributeValue>) are not escaped. A normal user can inject XML markup into an attribute value (e.g., email, name) and add new <saml:Attribute> elements inside the signed assertion. The IdP then signs the tampered assertion and the SP accepts the injected attributes as trusted. This allows privilege escalation when attributes are used for authorization (roles/groups). This issue has been patched in version 2.13.0.

AI Analysis

XML Injection vulnerability in samlify allows privilege escalation in signed SAML assertions

Basic Information

ID CVE-2026-46490

Source GitHub_M

Published Jun 8, 2026 at 18:41

Affected Product

Vendor tngan

Product samlify

Version < 2.13.0

Affected Versions tngan samlify < 2.13.0

CWE Classification

CWE-91

AI Assessment

AI Score 8.7 / 10

AI Severity High

Vendor tngan

Product samlify

Version < 2.13.0

References

github.com /tngan/samlify/security/advisories/GHSA-34r5-q4jw-r36m

{
    "lastseen": "",
    "description": "samlify is a Node.js library for SAML single sign-on. Prior to version 2.13.0, samlify\u2019s template substitution only escapes attribute contexts. Values inserted into element text (e.g., <saml:AttributeValue>) are not escaped. A normal user can inject XML markup into an attribute value (e.g., email, name) and add new <saml:Attribute> elements inside the signed assertion. The IdP then signs the tampered assertion and the SP accepts the injected attributes as trusted. This allows privilege escalation when attributes are used for authorization (roles/groups). This issue has been patched in version 2.13.0.",
    "published": "2026-06-08T18:41:40.145Z",
    "modified": "2026-06-08T18:41:40.145Z",
    "type": "cve",
    "title": "samlify: XML Injection in AttributeValue Allows Privilege Escalation in Signed SAML Assertions",
    "source": "GitHub_M",
    "references": "https://github.com/tngan/samlify/security/advisories/GHSA-34r5-q4jw-r36m",
    "id": "CVE-2026-46490",
    "bulletinFamily": "",
    "cwe": [
        "CWE-91"
    ],
    "cvelist": null,
    "sourceData": "tngan samlify < 2.13.0",
    "sourceHref": "",
    "cvss": {
        "score": 8.7,
        "severity": "HIGH",
        "vector": "CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:N/VI:H/VA:N/SC:N/SI:N/SA:N",
        "version": "4.0"
    },
    "cvss2": [],
    "cvss3": {
        "version": "",
        "vectorString": "",
        "baseScore": 0,
        "baseSeverity": "",
        "attackVector": "",
        "attackComplexity": "",
        "privilegesRequired": "",
        "userInteraction": "",
        "scope": "",
        "confidentialityImpact": "",
        "integrityImpact": "",
        "availabilityImpact": "",
        "cvssV3": {
            "version": "",
            "vectorString": "",
            "baseScore": 0,
            "baseSeverity": "",
            "attackVector": "",
            "attackComplexity": "",
            "privilegesRequired": "",
            "userInteraction": "",
            "scope": "",
            "confidentialityImpact": "",
            "integrityImpact": "",
            "availabilityImpact": ""
        }
    },
    "href": "",
    "category_name": "CVE",
    "post_link": "",
    "product": "samlify",
    "version": "< 2.13.0",
    "vendor": "tngan",
    "ai_description": "XML Injection vulnerability in samlify allows privilege escalation in signed SAML assertions",
    "ai_severity": "High",
    "ai_vendor": "tngan",
    "ai_product": "samlify",
    "ai_version": "< 2.13.0",
    "ai_score": 8.7
}

💭 Join the Security Discussion ❌ Cancel Reply