Miniorange Saml Sp Single Sign On — known CVE vulnerabilities
Every CVE whose affected-product data names Miniorange Saml Sp Single Sign On, ordered by CVSS severity, with EPSS exploit prediction and CISA KEV status.
CVEs (3)
CVE-2019-12346 — CVSS 6.1 (medium): In the miniOrange SAML SP Single Sign On plugin before 4.8.73 for WordPress, the SAML Login Endpoint is vulnerable to XSS via a specially…
CVE-2020-6850 — CVSS 6.1 (medium): Utilities.php in the miniorange-saml-20-single-sign-on plugin before 4.8.84 for WordPress allows XSS via a crafted SAML XML Response to…
CVE-2022-4496 — CVSS 6.1 (medium): The SAML SSO Standard WordPress plugin version 16.0.0 before 16.0.8, SAML SSO Premium WordPress plugin version 12.0.0 before 12.1.0 and…