Exploit for Caldera forms < 1.9.5 - Admin+ Stored Cross-Site Scripting CVE-2021-24896

Name: Exploit for Caldera forms < 1.9.5 - Admin+ Stored Cross-Site Scripting CVE-2021-24896
Rating: 5 (107 reviews)

2021-11-11 | CVSS 3.5

## https://sploitus.com/exploit?id=WPEX-ID:2C469E8B-C761-460B-B31D-9219A43006FF
Create/edit a form, and put the following payload in the Form Name via the Form Settings: "><script>alert(/XSS/)</script>

Then edit the form again the trigger the XSS