miniOrange WordPress Single Sign-On
Moderate fix7 remedies
cpe:2.3:a:miniorange:oauth_single_sign_on:*:*:*:*:wordpress:*:*
Moderate fix7 remedies
- <= 50.5.3
- <= 40.5.3
- <= 30.5.3
- <= 48.5.3
- <= 38.5.3
- <= 28.5.3
- <= 18.5.3
WordPress Single Sign-On (SSO) Plugin Unauthorized Access Vulnerability
Vulnerability
Patched
A vulnerability in the WordPress Single Sign-On (SSO) plugin, affecting all versions through 50.5.3, allows unauthorized access due to a misconfigured capability check. This flaw enables unauthenticated attackers to access sensitive data, including restricted site content based on user roles or permissions.
Impact
Exploitation of this vulnerability could lead to unauthorized access to sensitive information, including restricted site content.
Remediation
Users can update to version 50.5.4 or a newer patched version to address this vulnerability.
Added: Jun 12, 2025, 9:40 AM
Updated: Jun 12, 2025, 9:40 AM
Vulnerability Rating
Custom Algorithm
spread
5.2impact
2.5exploitability
7.6remediation
7.7relevance
0.2threat
0.0urgency
2.9incentive
5.8Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.