CVE-2016-10872
CVE-2016-10872 pertains to the WordPress plugin Ultimate Member (prior to version 1.3.40). The vulnerability is a cross-site scripting (XSS) flaw found on the login form, arising in the affected plugin’s handling of user-supplied data. Connected sources consistently describe the same issue and in...