{"id":707319,"name":"simplesamlphp/simplesamlphp-module-infocard","ecosystem":"packagist","description":"A SimpleSAMLphp module that works with Information Cards technologies.","homepage":"","licenses":null,"normalized_licenses":[],"repository_url":"https://github.com/simplesamlphp/simplesamlphp-module-infocard","keywords_array":["infocard","simplesamlphp"],"namespace":"simplesamlphp","versions_count":3,"first_release_published_at":"2016-03-09T12:54:43.000Z","latest_release_published_at":"2017-06-27T08:41:08.000Z","latest_release_number":"v1.0.2","last_synced_at":"2026-04-18T09:50:49.147Z","created_at":"2022-04-07T11:13:18.846Z","updated_at":"2026-04-18T09:50:49.147Z","registry_url":"https://packagist.org/packages/simplesamlphp/simplesamlphp-module-infocard#","install_command":"composer require simplesamlphp/simplesamlphp-module-infocard","documentation_url":null,"metadata":{"funding":[]},"repo_metadata":{"id":26135386,"uuid":"29580342","full_name":"simplesamlphp/simplesamlphp-module-infocard","owner":"simplesamlphp","description":"A SimpleSAMLphp module that works with Information Cards techcnologies.","archived":true,"fork":false,"pushed_at":"2020-03-25T13:01:58.000Z","size":230,"stargazers_count":1,"open_issues_count":0,"forks_count":0,"subscribers_count":11,"default_branch":"master","last_synced_at":"2024-07-04T19:18:25.730Z","etag":null,"topics":[],"latest_commit_sha":null,"homepage":null,"language":"PHP","has_issues":true,"has_wiki":null,"has_pages":null,"mirror_url":null,"source_name":null,"license":null,"status":null,"scm":"git","pull_requests_enabled":true,"icon_url":"https://github.com/simplesamlphp.png","metadata":{"files":{"readme":"README.md","changelog":null,"contributing":null,"funding":null,"license":null,"code_of_conduct":null,"threat_model":null,"audit":null,"citation":null,"codeowners":null,"security":null,"support":null}},"created_at":"2015-01-21T08:48:16.000Z","updated_at":"2023-01-28T15:19:02.000Z","dependencies_parsed_at":"2022-07-25T11:01:59.405Z","dependency_job_id":null,"html_url":"https://github.com/simplesamlphp/simplesamlphp-module-infocard","commit_stats":null,"previous_names":[],"tags_count":3,"template":false,"template_full_name":null,"repository_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/simplesamlphp%2Fsimplesamlphp-module-infocard","tags_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/simplesamlphp%2Fsimplesamlphp-module-infocard/tags","releases_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/simplesamlphp%2Fsimplesamlphp-module-infocard/releases","manifests_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/simplesamlphp%2Fsimplesamlphp-module-infocard/manifests","owner_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/owners/simplesamlphp","download_url":"https://codeload.github.com/simplesamlphp/simplesamlphp-module-infocard/tar.gz/refs/heads/master","host":{"name":"GitHub","url":"https://github.com","kind":"github","repositories_count":214638613,"owners_count":15762637,"icon_url":"https://github.com/github.png","version":null,"created_at":"2022-05-30T11:31:42.601Z","updated_at":"2022-07-04T15:15:14.044Z","host_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub","repositories_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories","repository_names_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repository_names","owners_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/owners"},"owner_record":{"login":"simplesamlphp","name":"SimpleSAMLphp","uuid":"5774640","kind":"organization","description":"","email":"simplesamlphp@googlegroups.com","website":"https://simplesamlphp.org/","location":null,"twitter":null,"company":null,"icon_url":"https://avatars.githubusercontent.com/u/5774640?v=4","repositories_count":73,"last_synced_at":"2023-08-05T07:01:51.973Z","metadata":{"has_sponsors_listing":false},"html_url":"https://github.com/simplesamlphp","funding_links":[],"total_stars":null,"followers":null,"following":null,"created_at":"2022-11-06T10:15:48.593Z","updated_at":"2023-08-05T07:01:52.368Z","owner_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/owners/simplesamlphp","repositories_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/owners/simplesamlphp/repositories"},"tags":[{"name":"v1.0.2","sha":"3a5b99f7f25e971c9b9b25b16503be9a1007b42a","kind":"tag","published_at":"2017-08-07T11:59:19.000Z","download_url":"https://codeload.github.com/simplesamlphp/simplesamlphp-module-infocard/tar.gz/v1.0.2","html_url":"https://github.com/simplesamlphp/simplesamlphp-module-infocard/releases/tag/v1.0.2","dependencies_parsed_at":null,"dependency_job_id":null,"tag_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/simplesamlphp%2Fsimplesamlphp-module-infocard/tags/v1.0.2","manifests_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/simplesamlphp%2Fsimplesamlphp-module-infocard/tags/v1.0.2/manifests"},{"name":"v1.0.1","sha":"63b84cc837ea62bf87f4bf4af29b4420f49311a9","kind":"tag","published_at":"2016-12-12T16:00:14.000Z","download_url":"https://codeload.github.com/simplesamlphp/simplesamlphp-module-infocard/tar.gz/v1.0.1","html_url":"https://github.com/simplesamlphp/simplesamlphp-module-infocard/releases/tag/v1.0.1","dependencies_parsed_at":null,"dependency_job_id":null,"tag_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/simplesamlphp%2Fsimplesamlphp-module-infocard/tags/v1.0.1","manifests_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/simplesamlphp%2Fsimplesamlphp-module-infocard/tags/v1.0.1/manifests"},{"name":"v1.0","sha":"b8699d5258b2eaec87898febc7c88d26919a30d3","kind":"tag","published_at":"2016-03-09T12:58:36.000Z","download_url":"https://codeload.github.com/simplesamlphp/simplesamlphp-module-infocard/tar.gz/v1.0","html_url":"https://github.com/simplesamlphp/simplesamlphp-module-infocard/releases/tag/v1.0","dependencies_parsed_at":null,"dependency_job_id":null,"tag_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/simplesamlphp%2Fsimplesamlphp-module-infocard/tags/v1.0","manifests_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/simplesamlphp%2Fsimplesamlphp-module-infocard/tags/v1.0/manifests"}]},"repo_metadata_updated_at":"2024-08-09T08:48:51.674Z","dependent_packages_count":0,"downloads":16439,"downloads_period":"total","dependent_repos_count":15,"rankings":{"downloads":8.437877125959758,"dependent_repos_count":3.0866033120013197,"dependent_packages_count":19.100365392209298,"stargazers_count":24.971821446690676,"forks_count":27.03616601728951,"docker_downloads_count":0.4439935936996385,"average":13.8461378146417},"purl":"pkg:composer/simplesamlphp/simplesamlphp-module-infocard","advisories":[{"uuid":"GSA_kwCzR0hTQS0ycGh3LXJncjctNXB2aM4AAw0N","url":"https://github.com/advisories/GHSA-2phw-rgr7-5pvh","title":"Information Cards Module vulnerable to Cross-site Scripting","description":"A vulnerability was found in Information Cards Module and classified as problematic. This issue affects some unknown processing. The manipulation leads to cross site scripting. The attack may be initiated remotely. Upgrading to version 1.0 is able to address this issue. The name of the patch is f6bfea49ae16dc6e179df8306d39c3694f1ef186. It is recommended to upgrade the affected component. The identifier VDB-217661 was assigned to this vulnerability. ","origin":"UNSPECIFIED","severity":"MODERATE","published_at":"2023-01-09T09:30:25.000Z","withdrawn_at":null,"classification":"GENERAL","cvss_score":6.1,"cvss_vector":"CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N","references":["https://nvd.nist.gov/vuln/detail/CVE-2010-10004","https://github.com/simplesamlphp/simplesamlphp-module-infocard/commit/f6bfea49ae16dc6e179df8306d39c3694f1ef186","https://github.com/simplesamlphp/simplesamlphp-module-infocard/releases/tag/v1.0","https://vuldb.com/?ctiid.217661","https://vuldb.com/?id.217661","https://github.com/advisories/GHSA-2phw-rgr7-5pvh"],"source_kind":"github","identifiers":["GHSA-2phw-rgr7-5pvh","CVE-2010-10004"],"repository_url":"https://github.com/simplesamlphp/simplesamlphp-module-infocard","blast_radius":0.0,"created_at":"2023-01-13T22:03:15.012Z","updated_at":"2026-04-05T20:07:29.912Z","epss_percentage":0.00251,"epss_percentile":0.48218,"api_url":"https://advisories.ecosyste.ms/api/v1/advisories/GSA_kwCzR0hTQS0ycGh3LXJncjctNXB2aM4AAw0N","html_url":"https://advisories.ecosyste.ms/advisories/GSA_kwCzR0hTQS0ycGh3LXJncjctNXB2aM4AAw0N","packages":[{"ecosystem":"packagist","package_name":"simplesamlphp/simplesamlphp-module-infocard","versions":[{"first_patched_version":"1.0","vulnerable_version_range":"\u003c 1.0"}],"purl":null}],"related_packages_url":"https://advisories.ecosyste.ms/api/v1/advisories/GSA_kwCzR0hTQS0ycGh3LXJncjctNXB2aM4AAw0N/related_packages","related_advisories":[]},{"uuid":"GSA_kwCzR0hTQS1majI4LTg2OXgtdnY1Z84AATg2","url":"https://github.com/advisories/GHSA-fj28-869x-vv5g","title":" SimpleSAMLphp InfoCard module Incorrect signature verification","description":"The InfoCard module 1.0 for SimpleSAMLphp allows attackers to spoof XML messages by leveraging an incorrect check of return values in signature validation utilities.","origin":"UNSPECIFIED","severity":"HIGH","published_at":"2022-05-14T01:05:32.000Z","withdrawn_at":null,"classification":"GENERAL","cvss_score":7.5,"cvss_vector":"CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:H/A:N","references":["https://nvd.nist.gov/vuln/detail/CVE-2017-12874","https://lists.debian.org/debian-lts-announce/2017/12/msg00007.html","https://simplesamlphp.org/security/201612-03","https://www.debian.org/security/2018/dsa-4127","https://github.com/simplesamlphp/simplesamlphp-module-infocard/commit/63b84cc837ea62bf87f4bf4af29b4420f49311a9","https://github.com/FriendsOfPHP/security-advisories/blob/master/simplesamlphp/simplesamlphp-module-infocard/CVE-2017-12874.yaml","https://github.com/advisories/GHSA-fj28-869x-vv5g"],"source_kind":"github","identifiers":["GHSA-fj28-869x-vv5g","CVE-2017-12874"],"repository_url":"https://github.com/simplesamlphp/simplesamlphp-module-infocard","blast_radius":0.0,"created_at":"2024-04-25T22:05:18.727Z","updated_at":"2026-04-10T16:05:13.355Z","epss_percentage":0.00282,"epss_percentile":0.51532,"api_url":"https://advisories.ecosyste.ms/api/v1/advisories/GSA_kwCzR0hTQS1majI4LTg2OXgtdnY1Z84AATg2","html_url":"https://advisories.ecosyste.ms/advisories/GSA_kwCzR0hTQS1majI4LTg2OXgtdnY1Z84AATg2","packages":[{"ecosystem":"packagist","package_name":"simplesamlphp/simplesamlphp-module-infocard","versions":[{"first_patched_version":"1.0.1","vulnerable_version_range":"\u003c 1.0.1"}],"purl":null}],"related_packages_url":"https://advisories.ecosyste.ms/api/v1/advisories/GSA_kwCzR0hTQS1majI4LTg2OXgtdnY1Z84AATg2/related_packages","related_advisories":[]}],"docker_usage_url":"https://docker.ecosyste.ms/usage/packagist/simplesamlphp/simplesamlphp-module-infocard","docker_dependents_count":1,"docker_downloads_count":78577,"usage_url":"https://repos.ecosyste.ms/usage/packagist/simplesamlphp/simplesamlphp-module-infocard","dependent_repositories_url":"https://repos.ecosyste.ms/api/v1/usage/packagist/simplesamlphp/simplesamlphp-module-infocard/dependencies","status":"abandoned","funding_links":[],"critical":null,"issue_metadata":{"last_synced_at":"2024-07-04T00:21:03.061Z","issues_count":0,"pull_requests_count":2,"avg_time_to_close_issue":null,"avg_time_to_close_pull_request":7187071.0,"issues_closed_count":0,"pull_requests_closed_count":2,"pull_request_authors_count":2,"issue_authors_count":0,"avg_comments_per_issue":null,"avg_comments_per_pull_request":0.0,"merged_pull_requests_count":2,"bot_issues_count":0,"bot_pull_requests_count":0,"past_year_issues_count":0,"past_year_pull_requests_count":0,"past_year_avg_time_to_close_issue":null,"past_year_avg_time_to_close_pull_request":null,"past_year_issues_closed_count":0,"past_year_pull_requests_closed_count":0,"past_year_pull_request_authors_count":0,"past_year_issue_authors_count":0,"past_year_avg_comments_per_issue":null,"past_year_avg_comments_per_pull_request":null,"past_year_bot_issues_count":0,"past_year_bot_pull_requests_count":0,"past_year_merged_pull_requests_count":0,"issues_url":"https://issues.ecosyste.ms/api/v1/hosts/GitHub/repositories/simplesamlphp%2Fsimplesamlphp-module-infocard/issues","maintainers":[{"login":"scrutinizer-auto-fixer","count":1,"url":"https://issues.ecosyste.ms/api/v1/hosts/GitHub/authors/scrutinizer-auto-fixer"},{"login":"tvdijen","count":1,"url":"https://issues.ecosyste.ms/api/v1/hosts/GitHub/authors/tvdijen"}],"active_maintainers":[]},"versions_url":"https://packages.ecosyste.ms/api/v1/registries/packagist.org/packages/simplesamlphp%2Fsimplesamlphp-module-infocard/versions","version_numbers_url":"https://packages.ecosyste.ms/api/v1/registries/packagist.org/packages/simplesamlphp%2Fsimplesamlphp-module-infocard/version_numbers","dependent_packages_url":"https://packages.ecosyste.ms/api/v1/registries/packagist.org/packages/simplesamlphp%2Fsimplesamlphp-module-infocard/dependent_packages","related_packages_url":"https://packages.ecosyste.ms/api/v1/registries/packagist.org/packages/simplesamlphp%2Fsimplesamlphp-module-infocard/related_packages","codemeta_url":"https://packages.ecosyste.ms/api/v1/registries/packagist.org/packages/simplesamlphp%2Fsimplesamlphp-module-infocard/codemeta","maintainers":[{"uuid":"jaime","login":"jaime","name":null,"email":null,"url":null,"packages_count":77,"html_url":"https://packagist.org/users/jaime","role":null,"created_at":"2022-11-20T08:30:25.328Z","updated_at":"2022-11-20T08:30:25.328Z","packages_url":"https://packages.ecosyste.ms/api/v1/registries/packagist.org/maintainers/jaime/packages"},{"uuid":"thijskh","login":"thijskh","name":null,"email":null,"url":null,"packages_count":88,"html_url":"https://packagist.org/users/thijskh","role":null,"created_at":"2022-11-20T08:30:25.389Z","updated_at":"2022-11-20T08:30:25.389Z","packages_url":"https://packages.ecosyste.ms/api/v1/registries/packagist.org/maintainers/thijskh/packages"},{"uuid":"tvdijen","login":"tvdijen","name":null,"email":null,"url":null,"packages_count":94,"html_url":"https://packagist.org/users/tvdijen","role":null,"created_at":"2022-11-20T08:30:25.399Z","updated_at":"2022-11-20T08:30:25.399Z","packages_url":"https://packages.ecosyste.ms/api/v1/registries/packagist.org/maintainers/tvdijen/packages"}]}