Title: SAML Replay Attack
Last modified: March 31, 2026

---

# SAML Replay Attack

 *  [meenasekar](https://wordpress.org/support/users/meenasekar/)
 * (@meenasekar)
 * [1 week, 5 days ago](https://wordpress.org/support/topic/saml-replay-attack/)
 * Hello Team,
 * In our application we are using the WP SAML Auth plugin (v2.3.0) for the SSO 
   login and integrated it with the ACME (IdP) provider. The recent scan has reported
   a potential SAML Replay Attack vulnerability in our application. Could you please
   advise whether this issue needs to be addressed on the Acme (IdP) side or within
   our application? 
 * Please find the issue details below:
 * **Issue Details:
   A SAML replay attack occurs when an attacker captures a legitimate
   SAML assertion issued by an identity provider and submits that assertion again
   to a service provider in order to impersonate the original user. The attacker
   does not need to alter the assertion, because simply replaying a valid assertion
   within its validity window can allow authentication as the user if the service
   provider does not enforce assertion uniqueness, strict timestamp checks, audience
   restrictions, or proper signature validation. Replay attacks typically happen
   when assertions are exposed in transit, stored in logs, or available to malware
   on the user device.

Viewing 1 replies (of 1 total)

 *  Plugin Contributor [Anais Pantheor](https://wordpress.org/support/users/anaispantheor/)
 * (@anaispantheor)
 * [1 week, 4 days ago](https://wordpress.org/support/topic/saml-replay-attack/#post-18867983)
 * Hello [@meenasekar](https://wordpress.org/support/users/meenasekar/),
   Thank you
   for the report! We are looking into this now and will work on a fix if any adjustments
   are needed in the plugin code.
 * We appreciate your patience while we get this sorted.

Viewing 1 replies (of 1 total)

You must be [logged in](https://login.wordpress.org/?redirect_to=https%3A%2F%2Fwordpress.org%2Fsupport%2Ftopic%2Fsaml-replay-attack%2F%3Foutput_format%3Dmd&locale=en_US)
to reply to this topic.

 * ![](https://ps.w.org/wp-saml-auth/assets/icon-256x256.png?rev=3348767)
 * [WP SAML Auth](https://wordpress.org/plugins/wp-saml-auth/)
 * [Frequently Asked Questions](https://wordpress.org/plugins/wp-saml-auth/#faq)
 * [Support Threads](https://wordpress.org/support/plugin/wp-saml-auth/)
 * [Active Topics](https://wordpress.org/support/plugin/wp-saml-auth/active/)
 * [Unresolved Topics](https://wordpress.org/support/plugin/wp-saml-auth/unresolved/)
 * [Reviews](https://wordpress.org/support/plugin/wp-saml-auth/reviews/)

## Tags

 * [WordPress](https://wordpress.org/support/topic-tag/wordpress/)

 * 1 reply
 * 2 participants
 * Last reply from: [Anais Pantheor](https://wordpress.org/support/users/anaispantheor/)
 * Last activity: [1 week, 4 days ago](https://wordpress.org/support/topic/saml-replay-attack/#post-18867983)
 * Status: not resolved