cve,link,title,description,vendor,products,score,severity,epss,cisa,cisa_published,article,ransomware,exploited,poc,trended,trended_no_1,published,trended_score
CVE-2020-6850,https://securityvulnerability.io/vulnerability/CVE-2020-6850,,"Utilities.php in the miniorange-saml-20-single-sign-on plugin before 4.8.84 for WordPress allows XSS via a crafted SAML XML Response to wp-login.php. This is related to the SAMLResponse and RelayState variables, and the Destination parameter of the samlp:Response XML element.",Wordpress,Saml Sp Single Sign On,6.1,MEDIUM,0.0016199999954551458,false,,false,false,false,,false,false,2020-02-17T15:01:33.000Z,0
CVE-2019-12346,https://securityvulnerability.io/vulnerability/CVE-2019-12346,,"In the miniOrange SAML SP Single Sign On plugin before 4.8.73 for WordPress, the SAML Login Endpoint is vulnerable to XSS via a specially crafted SAMLResponse XML post.",Wordpress,Saml Sp Single Sign On,6.1,MEDIUM,0.0014400000218302011,false,,false,false,false,,false,false,2019-06-24T20:25:25.000Z,0