Description XSS via a wle parameter associated with wp-login.php.
WP/wp-login.php?wle=%22%20onEvent%3DX186697040Y2Z%20