Share
## https://sploitus.com/exploit?id=WPEX-ID:D2B3C245-385E-495E-A19E-730A1EE28906
As admin, go the plugin settings (/wp-admin/options-general.php?page=clb) and set a payload such as <script>alert(/XSS/)</script> in the Bar Message field, then go on any frontend pages after saving the settings