CVE-2020-36875 | AccessAlly Plugin up to 3.3.1 on WordPress Login Widget login_error code injection

A vulnerability identified as critical has been detected in AccessAlly Plugin up to 3.3.1 on WordPress. This vulnerability affects unknown code of the component Login Widget. This manipulation of the argument login_error causes code injection.

This vulnerability is handled as CVE-2020-36875. The attack can be initiated remotely. There is not any exploit available.

You should upgrade the affected component.VulDB Recent EntriesRead More