cleantalk
Vulnerabilities and Security Researches

Advanced Database Cleaner, CVE-2021-24921

CVE, Research URL

CVE-2021-24921

Home page URL

Security reports for Advanced Database Cleaner

Application

Advanced Database Cleaner

Published on
Feb 21, 2022
Research Description
The Advanced Database Cleaner WordPress plugin before 3.0.4 does not sanitise and escape $_GET keys and values before outputting them back in attributes, leading to Reflected Cross-Site Scripting issues
Affected versions
max 3.0.4.
Status
vulnerable
Previous vulnerability researches
Advanced Database Cleaner (CVE-2025-11497) , Nov 10, 2025
Advanced Database Cleaner (CVE-2021-24141) , Jun 07, 2024
Advanced Database Cleaner (CVE-2023-49764) , Jun 07, 2024
Advanced Database Cleaner (CVE-2022-2173) , Jun 07, 2024
Advanced Database Cleaner (CVE-2022-46813) , Jun 07, 2024
New vulnerability
TopBar (CVE-2025-10300) , Nov 11, 2025
Store Toolkit for WooCommerce – Boost WooCommerce with useful tools, nuking/deleting, reports, order filters & more! (CVE-2025-60204) , Nov 11, 2025
Quick Featured Images (CVE-2025-11176) , Nov 11, 2025
Call Now Button – The #1 Click to Call Button for WordPress (CVE-2025-11587) , Nov 11, 2025
Call Now Button – The #1 Click to Call Button for WordPress (CVE-2025-11632) , Nov 11, 2025