Signal
High severity vulnerabilities disclosed in xmlseclibs, simplesamlphp/xml-security, and dagu
Three high severity security advisories were published addressing critical vulnerabilities: xmlseclibs and simplesamlphp/xml-security suffer from missing AES-GCM authentication tag validation on encrypted nodes, allowing unauthorized decryption (CVE-2026-32313 and CVE-2026-32600).
github
cveexploitssecurity_tooling
Evidence locked
Today's free sample is only available for the edition's flagship signal.
Evidence preview
- GitHub Security Advisoriesgithub.com
- xmlseclibs: Missing AES-GCM Authentication Tag Validation on Encrypted Nodes Allows for Unauthorized Decryptiongithub_advisories
- Dagu: SSE Authentication Bypass in Basic Auth Modegithub_advisories