Active Directory Integration / LDAP Integration

Vulnerabilities 9Slug ldap-login-for-intranet-sitesLatest version 5.4.1WordPress.org →

Minimum safe version

4.2

Update to 4.2 or later to address 9 fixable vulnerabilities

Latest available5.4.1 ✓

High 7.5

2023-10-17< 4.1.10

WordPress Active Directory Integration / LDAP Integration Plugin < 4.1.10 is vulnerable to Sensitive Data Exposure

Medium 6.5

2023-09-26< 4.2

CVE-2023-4506

N/A

2023-10-18< 3.6.95

WordPress Active Directory Integration / LDAP Integration Plugin <= 3.6.94 is vulnerable to Cross Site Scripting (XSS)

High 7.5

2023-06-29< 4.1.6

CVE-2023-3447

N/A

< 3.6.95

Active Directory Integration / LDAP Integration < 3.6.95 - Reflected Cross-Site Scripting

Medium 6.5

2023-06-09< 4.1.5

CVE-2023-2599

Medium 4.9

2023-06-09< 4.1.5

CVE-2023-2484

High 7.5

2023-05-15< 4.1.1

CVE-2023-0812

N/A

2021-10-18< 3.6.95

Active Directory Integration / LDAP Integration <= 3.6.94 - Reflected Cross-Site Scripting