4 matches found
CVE-2022-4496
The SAML SSO Standard WordPress plugin version 16.0.0 before 16.0.8, SAML SSO Premium WordPress plugin version 12.0.0 before 12.1.0 and SAML SSO Premium Multisite WordPress plugin version 20.0.0 before 20.0.7 does not validate that the redirect parameter to its SSO login endpoint points to an...
CVE-2022-4496 miniOrange WordPress SAML SSO multiple versions - Open Redirect in SSO login
The SAML SSO Standard WordPress plugin version 16.0.0 before 16.0.8, SAML SSO Premium WordPress plugin version 12.0.0 before 12.1.0 and SAML SSO Premium Multisite WordPress plugin version 20.0.0 before 20.0.7 does not validate that the redirect parameter to its SSO login endpoint points to an...
CVE-2022-4496
The CVE-2022-4496 issue affects the miniOrange SAML SSO WordPress plugins: SAML SSO Standard (WP plugin) v16.0.0 prior to 16.0.8, SAML SSO Premium v12.0.0 prior to 12.1.0, and SAML SSO Premium Multisite v20.0.0 prior to 20.0.7. The vulnerability arises because the redirect parameter for the SSO l...
CVE-2022-4496 miniOrange WordPress SAML SSO multiple versions - Open Redirect in SSO login
The SAML SSO Standard WordPress plugin version 16.0.0 before 16.0.8, SAML SSO Premium WordPress plugin version 12.0.0 before 12.1.0 and SAML SSO Premium Multisite WordPress plugin version 20.0.0 before 20.0.7 does not validate that the redirect parameter to its SSO login endpoint points to an...