Exploit for Fast Flow < 1.2.13 - Admin+ Stored Cross-Site Scripting CVE-2022-2775

Name: Exploit for Fast Flow < 1.2.13 - Admin+ Stored Cross-Site Scripting CVE-2022-2775
Rating: 5 (72 reviews)

2022-07-31 | CVSS -0.2

## https://sploitus.com/exploit?id=WPEX-ID:7101CE04-670E-4CE0-9F60-E00494FF379D
Create/edit a dashboard with an HTML widget in it and put the following payload in the Title or Description fields: <svg/onload=alert(/XSS/)>

The XSS will be triggered when viewing the Dashboard page (/wp-admin/admin.php?page=fast-flow)