Exploit for Simple Basic Contact Form < 20221201 - Admin+ Stored XSS CVE-2022-4226

Name: Exploit for Simple Basic Contact Form < 20221201 - Admin+ Stored XSS CVE-2022-4226
Rating: 5 (109 reviews)

2022-12-02 | CVSS 0.3

## https://sploitus.com/exploit?id=WPEX-ID:C5CA22E0-B7A5-468D-8366-1855FF33851B
1. Go to "Settings » Contact Form » Plugin Options" and in "Your Email", add the payload: 1" onmouseenter="alert(/XSS/) "

2. Then click on "Save Settings" and hove the mouse on the "Your Email" field to check the XSS popup.