## https://sploitus.com/exploit?id=WPEX-ID:000E65F1-89CD-4DD5-A09D-5FEBD9FDFBDB
Add/edit a product and put the following payload in the Product Affiliate URL, Custom Button Text fields: "><img src onerror=alert(/XSS/)>
The Product Description field is also affected, with the following payload: </textarea><img src onerror=alert(/XSS/)>
The XSS will be triggered when viewing the Product in a page, or when editing the Product in the admin dashboard