Security Advisory

CVE-2019-12346

CVE vulnerability detail — eXtreme Datacenter Security Operations

Published 2019-06-24 20:25:25

Last updated 2024-08-04 23:17:39

Assigner mitre

State PUBLISHED

Description

In the miniOrange SAML SP Single Sign On plugin before 4.8.73 for WordPress, the SAML Login Endpoint is vulnerable to XSS via a specially crafted SAMLResponse XML post.

← Browse all CVEs View on cve.org ↗