## https://sploitus.com/exploit?id=WPEX-ID:E2AF8C7F-9BD4-4902-8DF8-72FFB414FDBF
Put the following payload in any text field of Settings > Salat Times: "><img src onerror=alert(/XSS/)>
Save, and the XSS will be triggered when accessing the settings again.
The payload will also be triggered in pages where the [daily_salat_times] is embedded.