Exploit for Coming Soon - Under Construction <= 1.2.0 - Admin+ Stored Cross-Site Scripting CVE-2022-1322

Name: Exploit for Coming Soon - Under Construction <= 1.2.0 - Admin+ Stored Cross-Site Scripting CVE-2022-1322
Rating: 5 (77 reviews)

2022-07-26 | CVSS -0.2

## https://sploitus.com/exploit?id=WPEX-ID:E1724471-26BD-4CB3-A279-51783102ED0C
As admin, put the following payload in the "More text information" settings of the plugin: <img src onerror=alert(/XSS/)>

The XSS will be triggered in the frontend when in Coming Soon Mode