Description
The ultimate-member plugin before 1.3.40 for WordPress has XSS on the login form.
Remediation
References
Related Vulnerabilities
WordPress 4.8.x Multiple Vulnerabilities (4.8 - 4.8.10)
WordPress Plugin Fudousan Cross-Site Scripting (5.7.0)
Ruby Interpretation Conflict Vulnerability (CVE-2021-33621)
WordPress Plugin Thrive Quiz Builder Security Bypass (2.3.9.3)
WordPress Plugin Spectra-WordPress Gutenberg Blocks Security Bypass (1.14.7)