Share
## https://sploitus.com/exploit?id=WPEX-ID:72AEA0E5-1FA7-4827-A173-59982202D323
As an admin, create a review via the Admin dashboard (/wp-admin/post-new.php?post_type=site-review) and add the following payload in the Name/IP Address fields of the Review Details section: <script>alert(/XSS/)</script>

The XSS will be triggered when viewing the Reviews list table in the admin dashboard