Vulnerabilities > Miniorange > Saml SP Single Sign ON > 4.8.74

DATE CVE VULNERABILITY TITLE RISK
2020-02-17 CVE-2020-6850 Cross-site Scripting vulnerability in Miniorange Saml SP Single Sign ON
Utilities.php in the miniorange-saml-20-single-sign-on plugin before 4.8.84 for WordPress allows XSS via a crafted SAML XML Response to wp-login.php.
network
miniorange CWE-79
4.3
4.3