Login page vuln on #Menshn is only half fixed. Injected content still appears below the forgot password email box: