Description
The ultimate-member plugin before 1.3.40 for WordPress has XSS on the login form.
Remediation
References
Related Vulnerabilities
Elgg Permissions, Privileges, and Access Controls Vulnerability (CVE-2012-6563)
WordPress Plugin YITH WooCommerce Subscription Security Bypass (1.3.4)
Jenkins Allocation of Resources Without Limits or Throttling Vulnerability (CVE-2021-21607)
Oracle Database Server CVE-2011-0877 Vulnerability (CVE-2011-0877)
WordPress Plugin Google XML Sitemap for Videos Cross-Site Request Forgery (2.6.1)