This script is a PoC for CVE-2024-6536, where a XSS is possible in the Zephyr Project Manager plugin for Wordpress. It requires authentication and privileges as a project manager administrator.
python3 CVE-2024-6536.py -u <USERNAME> -p <PASSWORD> -w <url>
Example: python3 CVE-2024-6536.py -u user -p user -w http://localhost/wordpress