Exploit for Charitable – Donation Plugin < 1.6.51 - Authenticated Stored Cross-Site Scripting (XSS) CVE-2021-24531

Name: Exploit for Charitable – Donation Plugin < 1.6.51 - Authenticated Stored Cross-Site Scripting (XSS) CVE-2021-24531
Rating: 5 (273 reviews)

2021-07-21 | CVSS 3.5

## https://sploitus.com/exploit?id=WPEX-ID:A5837621-EE6E-4876-9F65-82658FC0341F
1. Go to /wp-admin/edit.php?post_type=donation
2. Add new donation
3. In the first or last name forms, add the XSS payload
4. Save and the XSS payload will be executed