Wix.com has a severe DOM XSS vulnerability that allows an attacker complete control over any website hosted at Wix. The vulnerability could be used to create a Wix website worm. Wix is a leading cloud-based development platform with millions of users worldwide. It claims 87 million registered users and over 2 million subscriptions, which would make it one of the top providers in the world. All Wix websites use a wixsite.com sub domain or a custom domain. An XSS against either of these will not allow access to the main wix.com domain and its cookies. To gain access to administrator session cookies or otherwise get access to.”]
Source: https://www.contrastsecurity.com/security-influencers/dom-xss-in-wix.com