Medium severity4.8NVD Advisory· Published Jan 14, 2022· Updated Jun 17, 2026
CVE-2021-36920
CVE-2021-36920
Description
Authenticated Reflected Cross-Site Scripting (XSS) vulnerability discovered in WordPress plugin Download Monitor (versions <= 4.4.6).
AI Insight
LLM-synthesized narrative grounded in this CVE's description and references.
Affected products
2- Range: <=4.4.6
- WPChill/Download Monitor (WordPress plugin)v5Range: <= 4.4.6
Patches
Vulnerability mechanics
References
2- patchstack.com/database/vulnerability/download-monitor/wordpress-download-monitor-plugin-4-4-6-authenticated-reflected-cross-site-scripting-xss-vulnerabilitynvdThird Party Advisory
- wordpress.org/plugins/download-monitor/nvdRelease NotesThird Party Advisory
News mentions
0No linked articles in our index yet.