Share
## https://sploitus.com/exploit?id=WPEX-ID:B87FCC2F-C2EB-4E23-9757-D1C590F26D3F
As admin, go to the Translate frontend page (/?trp-edit-translation=true)
Select the 'Search' string to be translated, and put the following payload as the Translated Text: <img src onerror=alert(/XSS/)>
Then access the frontend as any user to trigger the XSS

https://drive.google.com/file/d/1PnvjHuKCvjmom6xz_sxNLBu3jixCiHy_/view?usp=sharing