WordPress Smart Slider-3 plugin version 220.127.116.11 suffers from a persistent cross site scripting vulnerability.
# Exploit Title: WordPress Plugin Smart Slider-3 18.104.22.168 - 'name' Stored Cross-Site Scripting (XSS)
# Exploit Author: Hardik Solanki
# Date: 05/06/2021
# Software Link: https://wordpress.org/plugins/smart-slider-3/
# Version: 22.214.171.124
# Tested on Windows
*How to reproduce vulnerability:*
1. Install WordPress 5.7.2
2. Install and activate the "*Smart Slider 3" Version 126.96.36.199* plugin
3. Navigate to "*Dashboard* and create a "*New Project*".
5. You will observe that the Project has been created with malicious
1: Steal the cookie
2: User redirection to a malicious website