Cloud SAML SSO – Single Sign On Login

Vulnerabilities 4Slug cloud-sso-single-sign-onLatest version 1.0.21WordPress.org →

Minimum safe version

1.0.20

Update to 1.0.20 or later to address 4 fixable vulnerabilities

Latest available1.0.21
Medium 6.5
2025-09-06< 1.0.20

Cloud SAML SSO <= 1.0.19 - Missing Authorization to Unauthenticated Identity Provider Deletion via delete_config Action

EUVDWordfenceCVE
High 8.2
2025-09-05< 1.0.20

Cloud SAML SSO <= 1.0.19 - Missing Authorization to Unauthenticated Settings Modification via set_organization_settings Action

WordfenceCVE
N/A
2023-07-18< 1.0.14

WordPress Cloud SAML SSO - Single Sign On Login Plugin < 1.0.14 is vulnerable to Cross Site Scripting (XSS)

PatchstackWPScanCVE