Skip to content

Latest commit

 

History

History
17 lines (14 loc) · 717 Bytes

poc2.md

File metadata and controls

17 lines (14 loc) · 717 Bytes

Cross-Site Scripting (XSS) vulnerability in WP Simple Table Manager Plugin <= 1.5.6 at WordPress.

pPyHQ8f.png

  • STEPS: 1.After installing the plugin, click Simple Table Manager. Then click Export CSV. Put poc in CSV file name then click Save.

    POC:

    "><img src=1 onerror=alert(/xss/)>
    

pPyH1xS.png

  • 2.Then XSS vulnerability triggered pPyHJbj.png pPyHU5q.png