WordPress Plugin Vulnerabilities

miniOrange WordPress SAML SSO Premium < 12.1.0 - Open Redirect in SSO login

Description

The plugin does not validate that the redirect parameter to its SSO login endpoint points to an internal site URL, making it vulnerable to an Open Redirect issue when the user is already logged in.

Affects Plugins

Plugin icon
miniorange-saml-20-single-sign-on
Fixed in 12.1.0

References

CVE
CVE-2022-4496

Classification

Type
REDIRECT
OWASP top 10
A1: Injection
CWE
CWE-601
CVSS
4.7 (medium)

Miscellaneous

Original Researcher
Chirag Ketan Prajapati
Submitter
Harsh Tiwari
Submitter website
https://miniorange.com
Verified
No
WPVDB ID
af2e30c7-0787-4fe2-97ee-bc616f7178a1

Timeline

Publicly Published
2023-01-06 (about 1 years ago)
Added
2023-01-06 (about 1 years ago)
Last Updated
2023-03-21 (about 1 years ago)

Other

Published
Title
Published
2020-08-12
Title
Ultimate Member < 2.1.7 - Unauthenticated Open Redirect
Published
2014-08-01
Title
WPtouch 1.9.27 - 'wptouch_redirect' Parameter URI Redirection
Published
2023-10-25
Title
Parcel Pro < 1.6.12 - Open Redirect
Published
2014-11-26
Title
Ad Manager <= 1.1.2 - Open Redirection
Published
2024-01-30
Title
Payment Gateway for Telcell < 2.0.4 - Unauthenticated Open Redirect