WordPress Plugin Vulnerabilities

SAML SP Single Sign On < 5.0.5 - Missing Authorization to notice dismissal

Description

The SAML SP Single Sign On plugin for WordPress is vulnerable to unauthorized notice dismissal due to a missing capability check on the close_welcome_modal function in versions up to, and including, 5.0.4. This makes it possible for authenticated attackers, with subscriber-level access and above, to dismiss the welcome tour of the plugin.

Affects Plugins

Plugin icon
miniorange-saml-20-single-sign-on
Fixed in 5.0.5

References

CVE
CVE-2023-41873
URL
https://www.wordfence.com/threat-intel/vulnerabilities/id/c3114906-fac1-42b9-9ba1-0a5d44c2fb3a

Classification

Type
NO AUTHORISATION
OWASP top 10
A5: Broken Access Control
CWE
CWE-862
CVSS
4.3 (Medium)

Miscellaneous

Original Researcher
Abdi Pranata
Verified
No
WPVDB ID
13f65fd4-a368-4cb0-8b74-3909a65e4612

Timeline

Publicly Published
2023-09-05 (about 2 years ago)
Added
2023-11-23 (about 2 years ago)
Last Updated
2023-12-04 (about 2 years ago)

Other

Published
Title
Published
2026-01-27
Title
RegistrationMagic < 6.0.7.5 - Missing Authorization to Unauthenticated Arbitrary Settings Modification
Published
2026-02-03
Title
Magic Import Document Extractor < 1.0.6 - Missing Authorization to Unauthenticated Plugin License Status Modification
Published
2025-07-17
Title
aapanel WP Toolkit 1.0 - 1.1 - Missing Authorization to Authenticated (Subscriber+) Privilege Escalation via auto_login() Function
Published
2023-11-13
Title
WP Custom Admin Interface < 7.32 - Missing Authorization via wpcai_pro_notice_disable
Published
2024-04-16
Title
Popup Anything < 2.8.1 - Missing Authorization