Exploit for CodeColorer < 0.10.1 – Admin+ Stored Cross-Site Scripting CVE-2023-2795

Name: Exploit for CodeColorer < 0.10.1 – Admin+ Stored Cross-Site Scripting CVE-2023-2795
Rating: 5 (116 reviews)

2023-06-05 | CVSS 4.3

## https://sploitus.com/exploit?id=WPEX-ID:2D6ECD21-3DD4-423D-80E7-277C45080A9F
1. In the plugin's settings, add the payload `"><script>alert(1)</script>` to the "Custom CSS Classes" field.
2. Save and when the page reloads, see XSS.