Exploit for Scroll To Top < 1.4.1 - Admin+ Stored Cross-Site Scripting CVE-2022-2710

Name: Exploit for Scroll To Top < 1.4.1 - Admin+ Stored Cross-Site Scripting CVE-2022-2710
Rating: 5 (225 reviews)

2022-08-23 | CVSS 0.3

## https://sploitus.com/exploit?id=WPEX-ID:F730F584-2370-49F9-A094-A5BC521671C1
Put the following payload in the "Text" settings of the plugin and save: "autofocus onfocus=alert(/XSS/)//

The XSS will be triggered when accessing the settings again