## https://sploitus.com/exploit?id=WPEX-ID:0A0ECDFF-C961-4947-BF7E-BD2392501E33
1. Click on the "Add new" tab.
2. Select the "Menu" tab.
3. Enter the javascript payload in the "Link" field: javascript:alert(/XSS/);
4. Save it, visit the site, and click on the bubble menu.