Share
## https://sploitus.com/exploit?id=WPEX-ID:F7B95789-43F2-42A5-95E6-EB7ACCBD5ED3
1. When creating a new Question Pot, you can inject an XSS payload like  "><script>alert(1)</script> in the Quiz Name.
2. When adding a new quiz, you can inject an XSS payload like  "><script>alert(1)</script> in the Quiz Name.
3. When managing the plugin's Email Setting, you can inject an XSS payload like  "><script>alert(1)</script> in the "And from this name" field.