## https://sploitus.com/exploit?id=WPEX-ID:5A4774EC-C0EE-4C6B-92A6-FA10821EC336
Put the following payload in any Donation Level Text field of a Donation Form (ie /wp-admin/post.php?post=9&action=edit&give_tab=form_field_options#form_field_options): "onmouseover=alert(/XSS/)//
Then view a page/post with the embed Donation Form and move the mouse over the related Donation Level the payload was injected in to trigger the XSS