CVE-2016-5697 | Ruby-saml up to 1.2.x XML Signature xml injection (Nessus ID 92006 / ID 370247)
A vulnerability categorized as critical has been discovered in Ruby-saml up to 1.2.x. The affected element is an unknown function of the component XML Signature Handler. The manipulation results in xml injection.
This vulnerability was named CVE-2016-5697. The attack may be performed from remote. There is no available exploit.
It is advisable to upgrade the affected component.