3 matches found
CVE-2025-6003
The WordPress Single Sign-On SSO plugin for WordPress is vulnerable to unauthorized access due to a misconfigured capability check on a function in all versions up to, and including, the .5.3 versions of the plugin. This makes it possible for unauthenticated attackers to extract sensitive data...
CVE-2025-6003 WordPress Single Sign-On (SSO) - Multiple Versions - Incorrect Authorization to Sensitive Information Exposure
The WordPress Single Sign-On SSO plugin for WordPress is vulnerable to unauthorized access due to a misconfigured capability check on a function in all versions up to, and including, the .5.3 versions of the plugin. This makes it possible for unauthenticated attackers to extract sensitive data...
PT-2025-25285 · WordPress · Wordpress Single Sign-On (Sso) Plugin
Name of the Vulnerable Software and Affected Versions: WordPress Single Sign-On SSO plugin for WordPress versions prior to 5.3 Description: The issue is related to a misconfigured capability check on a function, allowing unauthorized access. This enables unauthenticated attackers to extract...