miniorange

Top products

The 15 most recently published vulnerabilities affecting miniorange.

• CVE-2026-5343SAML SSO - Service Provider - Critical - Authentication bypass - SA-CONTRIB-2026-0317.4May 28, 2026
• CVE-2026-42731WordPress miniorange otp verification plugin <= 5.4.9 - Privilege Escalation vulnerability9.8May 27, 2026
• CVE-2021-47979WordPress Plugin Backup and Restore 1.0.3 Arbitrary File Deletion8.8May 16, 2026
• CVE-2026-3217SAML SSO - Service Provider - Critical - Cross-site scripting - SA-CONTRIB-2026-0186.1Mar 25, 2026
• CVE-2025-68974WordPress WordPress Social Login and Register plugin <= 7.7.0 - Local File Inclusion vulnerability6.6Dec 30, 2025
• CVE-2025-54745WordPress miniOrange's Google Authenticator Plugin <= 6.1.1 - Broken Access Control Vulnerability6.5Dec 18, 2025
• CVE-2025-53561WordPress Prevent files / folders access Plugin <= 2.6.0 - Path Traversal Vulnerability6.5Aug 20, 2025
• CVE-2025-54048WordPress Custom API for WP <= 4.2.2 - SQL Injection Vulnerability9.3Aug 20, 2025
• CVE-2025-54049WordPress Custom API for WP <= 4.2.2 - Privilege Escalation Vulnerability9.9Aug 20, 2025
• CVE-2025-6675Enterprise MFA - TFA for Drupal - Critical - Access bypass - SA-CONTRIB-2025-0824.8Jun 26, 2025
• CVE-2025-31019WordPress Password Policy Manager plugin <= 2.0.4 - Account Takeover vulnerability8.8Jun 9, 2025
• CVE-2025-47670WordPress Social Login and Register plugin <= 7.6.10 - Local File Inclusion Vulnerability8.1May 23, 2025
• CVE-2025-47672WordPress miniOrange Discord Integration plugin <= 2.2.2 - Local File Inclusion Vulnerability8.1May 23, 2025
• CVE-2025-47710Enterprise MFA - TFA for Drupal - Critical - Access bypass - SA-CONTRIB-2025-0567.4May 14, 2025
• CVE-2025-47709Enterprise MFA - TFA for Drupal - Critical - Access bypass - SA-CONTRIB-2025-0556.5May 14, 2025