Lucene search

K

Harsh TiwariWPVDB-ID:AF2E30C7-0787-4FE2-97EE-BC616F7178A1

HistoryJan 06, 2023 - 12:00 a.m.

miniOrange WordPress SAML SSO Premium < 12.1.0 - Open Redirect in SSO login

2023-01-0600:00:00

Harsh Tiwari

wpscan.com

21

wordpress saml sso

open redirect

vulnerability

EPSS

0.001

Percentile

31.5%

The plugin does not validate that the redirect parameter to its SSO login endpoint points to an internal site URL, making it vulnerable to an Open Redirect issue when the user is already logged in.

EPSS

0.001

Percentile

31.5%

Related for WPVDB-ID:AF2E30C7-0787-4FE2-97EE-BC616F7178A1

cve1 cvelist1 wpvulndb2 prion1 nvd1