Stored XSS

A Stored XSS Vulnerability was discovered in WordPress plugin, WP-UserOnline, by security researcher Steffin Stanly. With over 20,000 Active Installations, site administrators are urged to update to the latest available version ( 2.88.0 ) which addresses this vulnerability. Exploit Author: Steffin StanlyVendor Homepage: https://github.com/lesterchan/wp-useronlineSoftware Link: https://wordpress.org/plugins/wp-useronline/Version: <=2.87.6Tested on Windows How to reproduce vulnerability: Install WordPress 6.0.1 2. Install and activate WP-UserOnline plugin. Navigate to Setting >> WP-UserOnline and enter the data into the User(s) Browsing Site. Add the following payload, and save changes. On visiting the dashboard, You will...