XSS vulnerability
-
Due to absence of validation of HTTP GET and POST request variables, this plugin is XSS vulnerable.
Consider that $_GET[‘redirect_to’] is echoed without validation in wp-login page.
Update please. Thanky ou.
Viewing 1 replies (of 1 total)
Viewing 1 replies (of 1 total)
- The topic ‘XSS vulnerability’ is closed to new replies.