CVE-2020-15020 Stored XSS on Elementor WordPress plugin

July 7, 2020 Leave a comment

1) Install elementor wordpress plugin

2) Go to templates tab

3) click add new, and select page or section

4) Then add XSS payload  “><img src=x onerror=alert(‘XSS’);> on “name your template” field and hit create template

5) XSS will pop every time once the page is published

Leave a Reply

Your email address will not be published. Required fields are marked *