CVE-2016-10928
The CVE-2016-10928 entry affects the WordPress Onelogin SAML SSO plugin (pre-2.2.0). The flaw is a hardcoded @@@nopass@@@ password used for just-in-time provisioned users, exposing an authentication weakness in affected deployments. Connected sources corroborate the issue across Red Hat, NVD/NVD-...