## https://sploitus.com/exploit?id=WPEX-ID:04EAF380-C345-425F-8800-142E3F4745A9 Add the following payload in the Universal Button > Image URL settings: " onerror=alert(/XSS/) " The XSS will be triggered in all frontend posts