CVE-2016-10872

CVE-2016-10872

EPSS 1.0%

The ultimate-member plugin before 1.3.40 for WordPress has XSS on the login form.

Affected products

Want to know if your infrastructure is exposed to this?

Talk to TrueHacking →

References

https://wordpress.org/plugins/ultimate-member/#developers https://wpvulndb.com/vulnerabilities/9738