Filter
Software
miniorange active directory integration \/ ldap integration
6
miniorange google authenticator
6
miniorange oauth single sign on
4
miniorange otp verification with firebase wordpress
3
miniorange saml sp single sign on
3
miniorange wordpress social login and register \(discord\, google\, twitter\, linkedin\)
3
miniorange saml
2
miniorange staff \/ employee business directory for active directory
2
miniorange web3 - crypto wallet login \& nft token gating
2
miniorange discord integration wordpress
1
miniorange ldap integration with active directory and openldap
1
miniorange limit login attempts
1
miniorange login using wordpress users
1
miniorange login with cognito
1
miniorange login with otp over sms\, email\, whatsapp and google authenticator
1
miniorange malware scanner
1
miniorange oauth 2.0 client for sso
1
miniorange prevent files \/ folders access
1
miniorange web application firewall wordpress
1
miniorange wordpress rest api authentication
1
miniorange wordpress security
1
Miniorange OTP Verification with Firebase WordPressMiniorange OTP Verification with Firebase <= 3.6.0 - Privilege Escalation via Registration due to Administrator Default User Role Value
9.8
EPSS
0.06%
First published (updated )
Miniorange OTP Verification with Firebase WordPressMiniorange OTP Verification with Firebase <= 3.6.0 - Unauthenticated Arbitrary User Password Change
9.8
EPSS
0.06%
First published (updated )
Miniorange OTP Verification with Firebase WordPressMiniorange OTP Verification with Firebase <= 3.6.0 - Authentication Bypass
8.1
EPSS
0.06%
First published (updated )
Miniorange Web Application Firewall WordpressWeb Application Firewall <= 2.1.2 - IP Address Spoofing to Protection Mechanism Bypass
5.3
First published (updated )
Miniorange Web3 - Crypto Wallet Login \& Nft Token GatingWeb3 – Crypto wallet Login & NFT token gating < 3.0.0 - Authentication Bypass
9.8
First published (updated )
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
Miniorange Staff \/ Employee Business Directory For Active DirectoryStaff / Employee Business Directory for Active Directory < 1.2.3 - Improper escaping of LDAP entries
5.4
First published (updated )
Miniorange Google AuthenticatorWordPress miniOrange's Google Authenticator Plugin <= 5.6.1 is vulnerable to Sensitive Data Exposure
8.1
First published (updated )
Miniorange Google AuthenticatorThe miniOrange's Google Authenticator plugin for WordPress is vulnerable to authorization bypass due…
7.5
First published (updated )
Miniorange Active Directory Integration \/ Ldap IntegrationActive Directory Integration < 4.1.10 - Unauthenticated Log Disclosure
7.5
First published (updated )
Miniorange Staff \/ Employee Business Directory For Active DirectoryThe Staff / Employee Business Directory for Active Directory plugin for WordPress is vulnerable to L…
4.9
First published (updated )
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
Miniorange Active Directory Integration \/ Ldap IntegrationThe Active Directory Integration / LDAP Integration plugin for WordPress is vulnerable to LDAP Passb…
6.5
First published (updated )
Miniorange Prevent Files \/ Folders AccessPrevent files / folders access < 2.5.2 - Admin+ Arbitrary File Upload
7.2
First published (updated )
Miniorange Oauth Single Sign OnWordPress OAuth Single Sign On – SSO (OAuth Client) Plugin <= 6.23.3 is vulnerable to Broken Authentication
8.8
First published (updated )
Miniorange Web3 - Crypto Wallet Login \& Nft Token GatingThe Web3 – Crypto wallet Login & NFT token gating plugin for WordPress is vulnerable to authenticati…
9.8
First published (updated )
Miniorange Active Directory Integration \/ Ldap IntegrationThe Active Directory Integration / LDAP Integration plugin for WordPress is vulnerable to LDAP Injec…
8.6
First published (updated )
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
Miniorange Wordpress Social Login And Register \(discord\, Google\, Twitter\, Linkedin\)The WordPress Social Login and Register (Discord, Google, Twitter, LinkedIn) plugin for WordPress is…
9.8
First published (updated )
Miniorange Active Directory Integration \/ Ldap IntegrationCSRF, SQL Injection
6.5
First published (updated )
Miniorange Active Directory Integration \/ Ldap IntegrationSQL Injection
7.2
First published (updated )
Miniorange Wordpress Social Login And Register \(discord\, Google\, Twitter\, Linkedin\)WordPress WordPress Social Login and Register (Discord, Google, Twitter, LinkedIn) Plugin <= 7.5.14 is vulnerable to Cross Site Request Forgery (CSRF)
8.8
First published (updated )
Miniorange Active Directory Integration \/ Ldap IntegrationActive Directory Integration / LDAP Integration < 4.1.1 - Unauthenticated Data Disclosure
7.5
First published (updated )
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
Miniorange Wordpress Social Login And Register \(discord\, Google\, Twitter\, Linkedin\)WordPress WordPress Social Login and Register (Discord, Google, Twitter, LinkedIn) plugin <= 7.5.14 is vulnerable to Cross Site Scripting (XSS)
5.9
First published (updated )
Miniorange Oauth Single Sign OnOAuth Single Sign On - SSO (OAuth Client) - IdP Deletion via CSRF
6.5
First published (updated )
Miniorange Oauth Single Sign OnOAuth Single Sign On - SSO (OAuth Client) < 6.24.2 - IdP Discard via CSRF
6.5
First published (updated )
miniOrange SAML SP Single Sign OnminiOrange WordPress SAML SSO multiple versions - Open Redirect in SSO login
6.1
First published (updated )
Miniorange Ldap Integration With Active Directory And OpenldapExtension - miniorange - LDAP Integration - LDAP Injection (username)
7.5
First published (updated )
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
Miniorange Login With CognitoLogin with Cognito <= 1.4.8 - Admin+ Stored XSS
4.8
First published (updated )
Miniorange Wordpress Rest Api AuthenticationWordPress REST API Authentication plugin <= 2.4.0 - Cross-Site Request Forgery (CSRF) vulnerability
8.8
First published (updated )
Miniorange Google AuthenticatorWordPress miniOrange's Google Authenticator plugin <= 5.6.1 - Broken Access Control vulnerability
8.8
First published (updated )
miniOrange Discord Integration WordPressminiOrange Discord Integration < 2.1.6 - Subscriber+ App Disabling
6.5
First published (updated )
WP OAuth ServerWordPress WP OAuth Server plugin <= 3.0.4 - Authentication Bypass vulnerability
9.8
First published (updated )
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.