## https://sploitus.com/exploit?id=WPEX-ID:EC70F02B-02A1-4511-949E-68F2D9D37CA8 Use a payload such as a"><img src onerror=alert(/XSS/)> in the plugin settings (for example, the Powered by Text input)