WordPress Plugin Schreikasten 0.14.13 - Cross-Site Scripting

Author: Henry Hoggard
type: webapps
platform: php
port: 
date_added: 2012-06-20 
date_updated: 2012-06-21 
verified: 1 
codes: OSVDB-83152 
tags: 
aliases:  
screenshot_url:  
application_url: http://www.exploit-db.comschreikasten.0.14.13.zip

# Title: WordPress Schreikasten 0.14.13 XSS
# Date: 5/6/12
# Author: Henry Hoggard
# Author URL: henryhoggard.co.uk
# Author Twitter: @henryhoggard
# http://wordpress.org/extend/plugins/schreikasten/

Post your XSS in either the name or content fields and the XSS will appear on the homepage.

Post your XSS as the poll title.

The XSS I used is
<script>alert('xss')</script>

#############################################################