EIP-2026-113496

The exploit demonstrates multiple XSS vulnerabilities in WordPress 2.1.1 by injecting malicious script tags via URL parameters in administrative pages. The PoC includes crafted URLs that trigger arbitrary JavaScript execution in the context of the affected site.