CVEDB API

Vulnerabilities

By Date
Known Exploited
Advanced Search

Vulnerable Software

Vendors
Products

Vulnerability Details CVE-2021-36899

Authenticated (admin+) Reflected Cross-Site Scripting (XSS) vulnerability in Gabe Livan's Asset CleanUp: Page Speed Booster plugin <= 1.3.8.4 at WordPress.

Exploit prediction scoring system (EPSS) score

EPSS Score 0.002

EPSS Ranking 47.5%

CVSS Severity

CVSS v3 Score 4.8

References

https://patchstack.com/database/vulnerability/wp-asset-clean-up/wordpress-asset-cleanup-page-speed-booster-plugin-1-3-8-4-authenticated-reflected-cross-site-scripting-xss-vulnerability?_s_id=cve
https://wordpress.org/plugins/wp-asset-clean-up/#developers
https://patchstack.com/database/vulnerability/wp-asset-clean-up/wordpress-asset-cleanup-page-speed-booster-plugin-1-3-8-4-authenticated-reflected-cross-site-scripting-xss-vulnerability?_s_id=cve
https://wordpress.org/plugins/wp-asset-clean-up/#developers

Products affected by CVE-2021-36899

Asset Cleanup » Page Speed Booster Project » Version: asset_cleanup

cpe:2.3:a:asset_cleanup:_page_speed_booster_project:asset_cleanup

Vulnerabilities

Vulnerable Software

Vulnerability Details CVE-2021-36899

Products

Pricing

Contact Us