CVE-2026-41670 | admidio up to 5.0.8 SSO Module smc_acs_url AssertionConsumerServiceURL assertion (GHSA-p9w9-87c8-m235)

A vulnerability categorized as critical has been discovered in admidio up to 5.0.8. Affected by this vulnerability is the function smc_acs_url of the component SSO Module. Executing a manipulation of the argument AssertionConsumerServiceURL can lead to reachable assertion.

This vulnerability appears as CVE-2026-41670. The attack may be performed from remote. There is no available exploit.

It is advisable to upgrade the affected component.VulDB Recent EntriesRead More