Cross-Site Request Forgery (CSRF) vulnerability leading to Stored Cross-Site Scripting (XSS) discovered by Ryoma Nishioka (Cryptography Laboratory - Tokyo Denki University) in WordPress Admin Custom Login plugin (versions <= 3.2.7).
Update the WordPress Admin Custom Login plugin to the latest available version (at least 3.2.8).
CPE | Name | Operator | Version |
---|---|---|---|
admin custom login | le | 3.2.7 |