## https://sploitus.com/exploit?id=WPEX-ID:F51A350C-C46D-4D52-B787-762283625D0B
Ad admin, put the following payload in the wpDiscuz > Phrases > Follow > "You started following this comment author" or "You stopped following this comment author" fields: </div><script>alert('XSS')</script>
Save the changes, log on with a user, go to a post with a comment from another user, and click the Follow/Unfollow icon (under a user comment profile picture) to trigger the XSS