Exploit for Timetable and Event Schedule by MotoPress < 2.3.19 - Author+ Stored Cross-Site Scripting CVE-2021-24724

Name: Exploit for Timetable and Event Schedule by MotoPress < 2.3.19 - Author+ Stored Cross-Site Scripting CVE-2021-24724
Rating: 5 (284 reviews)

2021-08-23 | CVSS 3.5

## https://sploitus.com/exploit?id=WPEX-ID:C1194A1E-BF33-4F3F-A4A6-27B76B1B1EEB
Create an event with the following payload in the description of a timeslot: <img src onerror=alert(/XSS/)>

The XSS will be executed in the frontend and backend when viewing the related event