Thanks for being on the lookout! Please don't publicly report issues.

Send a report of the vulnerability to cli@saml.to and we will discuss it through email, and you will be provided with the details of the fix/patch process.