Exploit for My Site Audit <= 1.2.4 - Authenticated Stored Cross-Site Scripting (XSS) CVE-2021-24445

Name: Exploit for My Site Audit <= 1.2.4 - Authenticated Stored Cross-Site Scripting (XSS) CVE-2021-24445
Rating: 5 (279 reviews)

2021-07-19 | CVSS 3.5

## https://sploitus.com/exploit?id=WPEX-ID:D60634A3-CA39-43BE-893B-FF9BA625360F
Create an audit with the following payload in the Audit Name field: "><img src onerror=alert(/XSS/)>

Then view the 'All Audit' or 'Dashboard' (of the plugin) pages to trigger the XSS