Title: exploit
Last modified: November 15, 2016

---

# exploit

 *  [ellheck](https://wordpress.org/support/users/ellheck/)
 * (@ellheck)
 * [9 years, 6 months ago](https://wordpress.org/support/topic/exploit-3/)
 * You can log in on anybodys account if they haven’t set up a qr code yet with
 * [http://yoursite.com/wp-login.php?user_id=1&qr_code=&#038](http://yoursite.com/wp-login.php?user_id=1&qr_code=&#038);
 * You should validate data better.

The topic ‘exploit’ is closed to new replies.

 * ![](https://ps.w.org/qr-user-login/assets/icon-256x256.png?rev=1532187)
 * [QR User Login](https://wordpress.org/plugins/qr-user-login/)
 * [Support Threads](https://wordpress.org/support/plugin/qr-user-login/)
 * [Active Topics](https://wordpress.org/support/plugin/qr-user-login/active/)
 * [Unresolved Topics](https://wordpress.org/support/plugin/qr-user-login/unresolved/)
 * [Reviews](https://wordpress.org/support/plugin/qr-user-login/reviews/)

 * 0 replies
 * 1 participant
 * Last reply from: [ellheck](https://wordpress.org/support/users/ellheck/)
 * Last activity: [9 years, 6 months ago](https://wordpress.org/support/topic/exploit-3/)
 * Status: not resolved