CVE-2025-6003

🗓️ 12 Jun 2025 08:22:43Reported by WordfenceType

cve🔗 web.nvd.nist.gov📰️ 1 Media mentions👁 55 Views

WordPress Single Sign-On plugin vulnerable to unauthorized access and sensitive data exposure.

Reporter	Title	Published	Views	Family All 10
Circl	CVE-2025-6003	12 Jun 202508:33	–	circl
CNNVD	WordPress plugin Single Sign-On (SSO) 安全漏洞	12 Jun 202500:00	–	cnnvd
Cvelist	CVE-2025-6003 WordPress Single Sign-On (SSO) - Multiple Versions - Incorrect Authorization to Sensitive Information Exposure	12 Jun 202508:22	–	cvelist
EUVD	EUVD-2025-18162	3 Oct 202520:07	–	euvd
NVD	CVE-2025-6003	12 Jun 202509:15	–	nvd
Patchstack	WordPress OAuth Single Sign On (SSO) plugin <= 18.5.3 - Incorrect Authorization to Sensitive Information Exposure vulnerability	12 Jun 202506:42	–	patchstack
Positive Technologies	PT-2025-25285 · WordPress · Wordpress Single Sign-On (Sso) Plugin	12 Jun 202500:00	–	ptsecurity
RedhatCVE	CVE-2025-6003	14 Jun 202509:12	–	redhatcve
Vulnrichment	CVE-2025-6003 WordPress Single Sign-On (SSO) - Multiple Versions - Incorrect Authorization to Sensitive Information Exposure	12 Jun 202508:22	–	vulnrichment
Wordfence Blog	Wordfence Intelligence Weekly WordPress Vulnerability Report (June 9, 2025 to June 15, 2025)	19 Jun 202514:32	–	wordfence

Vulners

Node

cyberlord92 wordpress_single_sign-on_(sso)_-_single_site_standardRange≤18.5.3wordpress

cyberlord92 wordpress_single_sign-on_(sso)_-_single_site_premiumRange≤28.5.3wordpress

cyberlord92 wordpress_single_sign-on_(sso)_-_multisite_premiumRange≤30.5.3wordpress

cyberlord92 wordpress_single_sign-on_(sso)_-_single_site_enterpriseRange≤38.5.3wordpress

cyberlord92 wordpress_single_sign-on_(sso)_-_multisite_enterpriseRange≤40.5.3wordpress

cyberlord92 wordpress_single_sign-on_(sso)_-_single_site_all-inclusiveRange≤48.5.3wordpress

cyberlord92 wordpress_single_sign-on_(sso)_-_multisite_all-inclusiveRange≤50.5.3wordpress

[
  {
    "vendor": "cyberlord92",
    "product": "WordPress Single Sign-On (SSO) - Single Site Standard",
    "versions": [
      {
        "version": "0",
        "status": "affected",
        "lessThanOrEqual": "18.5.3",
        "versionType": "semver"
      }
    ],
    "defaultStatus": "unaffected"
  },
  {
    "vendor": "cyberlord92",
    "product": "WordPress Single Sign-On (SSO) - Single Site Premium",
    "versions": [
      {
        "version": "0",
        "status": "affected",
        "lessThanOrEqual": "28.5.3",
        "versionType": "semver"
      }
    ],
    "defaultStatus": "unaffected"
  },
  {
    "vendor": "cyberlord92",
    "product": "WordPress Single Sign-On (SSO) - Multisite Premium",
    "versions": [
      {
        "version": "0",
        "status": "affected",
        "lessThanOrEqual": "30.5.3",
        "versionType": "semver"
      }
    ],
    "defaultStatus": "unaffected"
  },
  {
    "vendor": "cyberlord92",
    "product": "WordPress Single Sign-On (SSO) - Single Site Enterprise",
    "versions": [
      {
        "version": "0",
        "status": "affected",
        "lessThanOrEqual": "38.5.3",
        "versionType": "semver"
      }
    ],
    "defaultStatus": "unaffected"
  },
  {
    "vendor": "cyberlord92",
    "product": "WordPress Single Sign-On (SSO) - Multisite Enterprise",
    "versions": [
      {
        "version": "0",
        "status": "affected",
        "lessThanOrEqual": "40.5.3",
        "versionType": "semver"
      }
    ],
    "defaultStatus": "unaffected"
  },
  {
    "vendor": "cyberlord92",
    "product": "WordPress Single Sign-On (SSO) - Single Site All-Inclusive",
    "versions": [
      {
        "version": "0",
        "status": "affected",
        "lessThanOrEqual": "48.5.3",
        "versionType": "semver"
      }
    ],
    "defaultStatus": "unaffected"
  },
  {
    "vendor": "cyberlord92",
    "product": "WordPress Single Sign-On (SSO) - Multisite All-Inclusive",
    "versions": [
      {
        "version": "0",
        "status": "affected",
        "lessThanOrEqual": "50.5.3",
        "versionType": "semver"
      }
    ],
    "defaultStatus": "unaffected"
  }
]

Source	Link
plugins	www.plugins.miniorange.com/wordpress-sso
wordfence	www.wordfence.com/threat-intel/vulnerabilities/id/51aa5531-e5b3-4c47-8d06-58eac6dd92fb

15 Apr 2026 00:35Current

6.8Medium risk

Vulners AI Score6.8

CVSS 3.15.3

EPSS0.00272

SSVC

CWE-863