Description
The ultimate-member plugin before 1.3.18 for WordPress has XSS via text input.
Remediation
References
Related Vulnerabilities
PHP NULL Pointer Dereference Vulnerability (CVE-2016-6292)
Apache Traffic Server CVE-2023-30631 Vulnerability (CVE-2023-30631)
WordPress Plugin The Events Calendar Security Bypass (3.11.2)
Joomla Other Vulnerability (CVE-2006-2960)
MyBB Exposure of Sensitive Information to an Unauthorized Actor Vulnerability (CVE-2010-4625)