GCVE - cpe:2.3:a:miniorange:saml:*:*:*:*:*:typo3:*:*

Approved changes feed: RSS · Atom

cpe:2.3:a:miniorange:saml:*:*:*:*:*:typo3:*:*

part: a version: * update: *

Vendor	Miniorange (`30ca830e-0f9b-52a7-9359-14c31196f049`)
Product	Saml (`1b7c76e7-7508-5936-a1c7-0bd781795f56`)
Edition	*
Language	*
Software edition	*
Target software	typo3
Target hardware	*
Other	*
Notes	Imported from purl2cpe mapping

PURL mappings

PURL	Source	Last updated
`pkg:github/miniOrangeDev/miniorange-saml`	purl2cpe	2026-06-01 10:12:20.654640

Vulnerability references

Identifier	cpeApplicability	Submitted	db.gcve.eu details	Rationale
`CVE:CVE-2021-36786`	vulnerable	2026-06-03 14:44:59.167425	Details available The miniorange_saml (aka Miniorange Saml) extension before 1.4.3 for TYPO3 allows Sensitive Data Exposure of API credentials and private keys. Published: 2021-08-13T16:12:57.000Z Updated: 2024-08-04T01:01:59.459Z Open on db.gcve.eu Reference links https://typo3.org/help/security-advisories/security https://typo3.org/security/advisory/typo3-ext-sa-2021-011	Imported from gcve-enriched-dumps CVE data
`CVE:CVE-2021-36785`	vulnerable	2026-06-03 14:44:59.167026	Details available The miniorange_saml (aka Miniorange Saml) extension before 1.4.3 for TYPO3 allows XSS. Published: 2021-08-13T16:11:20.000Z Updated: 2024-08-04T01:01:59.400Z Open on db.gcve.eu Reference links https://typo3.org/help/security-advisories/security https://typo3.org/security/advisory/typo3-ext-sa-2021-011	Imported from gcve-enriched-dumps CVE data

Contribute

You can submit an edit proposal for this CPE entry or suggest a related product/vendor addition using the action button above.