Vulmon Recent Vulnerabilities Research Posts Trends Blog About Contact
NA

CVE-2022-4496

Published: 30/01/2023 Updated: 07/11/2023
CVSS v3 Base Score: 6.1 | Impact Score: 2.7 | Exploitability Score: 2.8
VMScore: 0
Subscribe to Saml Sp Single Sign On

Vulnerability Summary

The SAML SSO Standard WordPress plugin version 16.0.0 prior to 16.0.8, SAML SSO Premium WordPress plugin version 12.0.0 prior to 12.1.0 and SAML SSO Premium Multisite WordPress plugin version 20.0.0 prior to 20.0.7 does not validate that the redirect parameter to its SSO login endpoint points to an internal site URL, making it vulnerable to an Open Redirect issue when the user is already logged in.

Vulnerability Trend

Vulnerable Product Search on Vulmon Subscribe to Product

miniorange saml sp single sign on

References

https://wpscan.com/vulnerability/be21f355-0e5b-4ad7-9d8f-85e9a0101ddchttps://wpscan.com/vulnerability/e6c4c8c7-1dcd-45bf-8582-f12accca6fachttps://wpscan.com/vulnerability/af2e30c7-0787-4fe2-97ee-bc616f7178a1https://nvd.nist.gov
CVSSv2
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2024-27322administrator privilegesCVE-2024-1579hardcodedCVE-2023-20198CVE-2024-33587CVE-2024-33449CVE-2024-4308HTML injection
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started

Vulmon Search

Vulmon Search is a vulnerability search engine. It gives comprehensive vulnerability information through a very simple user interface.

About

Home Recent Vulnerabilities Research Posts Trends Blog About Contact

Products

Vulmon Search Vulmon Research Vulmon Alerts Vulmap

Connect

Twitter Reddit Linkedin Facebook