{"containers":{"cna":{"providerMetadata":{"orgId":"1bfdd5d7-9bf6-4a53-96ea-42e2716d7a81","shortName":"WPScan","dateUpdated":"2023-07-25T07:22:41.081Z"},"title":"Simple Single Sign On <= 4.1.0 - Authentication Bypass","problemTypes":[{"descriptions":[{"description":"CWE-319 Cleartext Transmission of Sensitive Information","lang":"en","type":"CWE"}]}],"affected":[{"vendor":"Unknown","product":"Simple Single Sign On","versions":[{"status":"affected","versionType":"custom","version":"0","lessThanOrEqual":"4.1.0"}],"defaultStatus":"affected","collectionURL":"https://wordpress.org/plugins"}],"descriptions":[{"lang":"en","value":"The Simple Single Sign On WordPress plugin through 4.1.0 leaks its OAuth client_secret, which could be used by attackers to gain unauthorized access to the site."}],"references":[{"url":"https://wpscan.com/vulnerability/2bbfc855-6901-462f-8a93-120d7fb5d268","tags":["exploit","vdb-entry","technical-description"]},{"url":"https://lana.codes/lanavdb/0bab7575-45fc-432d-945e-6100c35c574c/"}],"credits":[{"lang":"en","value":"Lana Codes","type":"finder"},{"lang":"en","value":"WPScan","type":"coordinator"}],"source":{"discovery":"EXTERNAL"},"x_generator":{"engine":"WPScan CVE Generator"}},"adp":[{"providerMetadata":{"orgId":"af854a3a-2127-422b-91ae-364da2661108","shortName":"CVE","dateUpdated":"2024-08-03T00:24:44.125Z"},"title":"CVE Program Container","references":[{"url":"https://wpscan.com/vulnerability/2bbfc855-6901-462f-8a93-120d7fb5d268","tags":["exploit","vdb-entry","technical-description","x_transferred"]},{"url":"https://lana.codes/lanavdb/0bab7575-45fc-432d-945e-6100c35c574c/","tags":["x_transferred"]}]}]},"cveMetadata":{"assignerOrgId":"1bfdd5d7-9bf6-4a53-96ea-42e2716d7a81","assignerShortName":"WPScan","cveId":"CVE-2022-2083","datePublished":"2022-09-05T12:35:17.000Z","dateReserved":"2022-06-14T00:00:00.000Z","dateUpdated":"2024-08-03T00:24:44.125Z","state":"PUBLISHED"},"dataType":"CVE_RECORD","dataVersion":"5.1"}