CVE-2026-3220 | Autoptimize Plugin up to 3.1.14 on WordPress Regular Expression cross site scripting

Inserito da Angelo Barbosa | Mag 18, 2026 | CVE

A vulnerability was found in Autoptimize Plugin up to 3.1.14 on WordPress. It has been classified as problematic. This impacts an unknown function of the component Regular Expression Handler. The manipulation leads to cross site scripting.

This vulnerability is traded as CVE-2026-3220. It is possible to initiate the attack remotely. There is no exploit available.

Upgrading the affected component is recommended.

CVE-2026-3220 | Autoptimize Plugin up to 3.1.14 on WordPress Regular Expression cross site scripting

Post correlati

CVE-2025-0960 | AutomationDirect C-more EA9 HMI EA9-T6CL up to 6.79 buffer overflow (icsa-25-035-08)

CVE-2024-51749 | element-hq element-web up to 1.11.84 clickjacking (GHSA-5486-384)

CVE-2024-30506 | Vsourz Digital All In One Redirection Plugin up to 2.2.0 on WordPress cross site scripting

CVE-2024-7707 | Tenda FH1206 02.03.01.35 HTTP POST Request /goform/SafeEmailFilter formSafeEmailFilter page stack-based overflow