CVE-2021-36899

Name of the Vulnerable Software and Affected Versions Asset CleanUp: Page Speed Booster plugin versions <= 1.3.8.4

Description The issue is related to an Authenticated Reflected Cross-Site Scripting (XSS) vulnerability. This type of vulnerability allows an attacker to inject malicious scripts into a website, potentially leading to unauthorized actions. The vulnerability requires authentication with admin or higher privileges, indicating it needs access to sensitive areas of the website.

Recommendations For Asset CleanUp: Page Speed Booster plugin versions <= 1.3.8.4, update to a version higher than 1.3.8.4 to resolve the issue.