Vulnerabilities > Miniorange > Saml SP Single Sign ON > 4.8.82

DATE CVE VULNERABILITY TITLE RISK
2020-02-17 CVE-2020-6850 Cross-site Scripting vulnerability in Miniorange Saml SP Single Sign on
Utilities.php in the miniorange-saml-20-single-sign-on plugin before 4.8.84 for WordPress allows XSS via a crafted SAML XML Response to wp-login.php.
network
low complexity
miniorange CWE-79
6.1
6.1