Exploit for WolfNet IDX for WordPress <= 1.19.1 - Admin+ Stored XSS CVE-2023-6783

Name: Exploit for WolfNet IDX for WordPress <= 1.19.1 - Admin+ Stored XSS CVE-2023-6783
Rating: 5 (126 reviews)

2024-01-23 | CVSS 7.9

## https://sploitus.com/exploit?id=WPEX-ID:5ACD231B-4072-4EE1-9497-023465318608
1. In the settings of the plugin, enter the following value in "Product Key". The value is: `"><svg/onload=alert('xss')>` 
2. Click the 'Save Changes' button on the page.
3. Refresh or re-enter the page and move the mouse over the input box to get the XSS trigger.