WordPress Schreikasten 0.14.13 XSS

[Exploit] [Remote] [Local] [Web Apps] [Dos/Poc] [Shellcode] [RSS]

# Title : WordPress Schreikasten 0.14.13 XSS
# Published : 2012-06-20
# Author :
# Previous Title : Wordpress Content Flow 3D Plugin 1.0.0 Arbitrary File Upload
# Next Title : UCCASS <= v1.8.1 Blind SQL Injection Vulnerability

# Title: WordPress Schreikasten 0.14.13 XSS
# Date: 5/6/12
# Author: Henry Hoggard
# Author URL: henryhoggard.co.uk
# Author Twitter: @henryhoggard
# http://wordpress.org/extend/plugins/schreikasten/

Post your XSS in either the name or content fields and the XSS will appear on the homepage.

Post your XSS as the poll title.

The XSS I used is
<script>alert('xss')</script>

#############################################################