Vulmon Recent Vulnerabilities Product List Research Posts Trends Blog About Contact

miniorange oauth single sign on vulnerabilities and exploits

(subscribe to this query)
6.5
CVSSv3

CVE-2023-1092

The OAuth Single Sign On Free WordPress plugin prior to 6.24.2, OAuth Single Sign On Standard WordPress plugin prior to 28.4.9, OAuth Single Sign On Premium WordPress plugin prior to 38.4.9 and OAuth Single Sign On Enterprise WordPress plugin prior to 48.4.9 do not have CSRF chec...
Miniorange Oauth Single Sign On FreeMiniorange Oauth Single Sign On StandardMiniorange Oauth Single Sign On PremiumMiniorange Oauth Single Sign On EnterpriseMiniorange Oauth Single Sign On
8.8
CVSSv3

CVE-2022-34155

Improper Authentication vulnerability in miniOrange OAuth Single Sign On – SSO (OAuth Client) plugin allows Authentication Bypass.This issue affects OAuth Single Sign On – SSO (OAuth Client): from n/a up to and including 6.23.3.
Miniorange Oauth Single Sign On – Sso (oauth Client)Miniorange Oauth Single Sign On
6.5
CVSSv3

CVE-2023-1093

The OAuth Single Sign On WordPress plugin prior to 6.24.2 does not have CSRF checks when discarding Identify providers (IdP), which could allow malicious users to make logged in admins delete all IdP via a CSRF attack
Unknown Oauth Single Sign OnMiniorange Oauth Single Sign On
5.3
CVSSv3

CVE-2022-2133

The OAuth Single Sign On WordPress plugin prior to 6.22.6 doesn't validate that OAuth access token requests are legitimate, which allows malicious users to log onto the site with the only knowledge of a user's email address.
Unknown Oauth Single Sign On – Sso (oauth Client)Miniorange Oauth Single Sign On
Preferred Score:
CVSSv3
CVSSv2
CVSSv3
CVSSv4
EPSS
VMScore
Recommendations:
jasmin ransomwareCVE-2025-6110code executionCVE-2025-21420reflected XSSCVE-2025-5336wp url shortenerCVE-2025-49113gr-5400axoverflowCVE-2025-6062letta-aiCVE-2025-50143
Home
/
Search Results
Vulmon Logo Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started

Vulmon Search

Vulmon Search is a vulnerability search engine. It gives comprehensive vulnerability information through a very simple user interface.

About

Home Recent Vulnerabilities Product List Vendor List Research Posts Trends Blog About Contact

Products

Vulmon Search Vulmon Research Vulmon Alerts Vulmap

Connect

Twitter Reddit Linkedin Facebook