Description A session hijack risk was identified in the Shibboleth authentication plugin. Remediation References CVE-2021-40691 Related Vulnerabilities WordPress Plugin Shortcode Addons-with Visual Composer, Divi, Beaver Builder and Elementor Extension Function Injection (3.2.5) SugarCRM Gain Sensitive Information Vulnerability (CVE-2004-1226) XWiki Insufficiently Protected Credentials Vulnerability (CVE-2022-41933) WordPress Plugin Event Registration 'event_id' Parameter SQL Injection (5.32) Apache HTTP Server Other Vulnerability (CVE-2002-0061) Severity Medium Classification CVE-2021-40691 CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:L/A:N Tags Missing Update Known Vulnerabilities