CVE-2020-15020 Stored XSS on Elementor WordPress plugin

1) Install elementor wordpress plugin

2) Go to templates tab

3) click add new, and select page or section

4) Then add XSS payload  “><img src=x onerror=alert(‘XSS’);> on “name your template” field and hit create template

5) XSS will pop every time once the page is published

Leave a Reply

Your email address will not be published. Required fields are marked *