CVE-2026-3220

HIGH

Autoptimize < 3.1.15; Clearfy Cache < 2.4.2; Speed Optimizer < 7.7.9 - Stored XSS via HTML Minification

Title source: llm

Exploitation Summary

EIP tracks 1 public exploit for CVE-2026-3220. PoCs published by fearlessresponsesolution.

AI-analyzed exploit summary The repository contains a functional Python exploit for CVE-2026-32201, demonstrating a SharePoint Server spoofing vulnerability via improper input validation. It includes a script to send crafted requests with spoofed sender details and a separate tool to generate malicious LNK files for CVE-2026-32202.

Description

The Autoptimize WordPress plugin before 3.1.15, Clearfy Cache WordPress plugin before 2.4.2, Speed Optimizer WordPress plugin before 7.7.9 are vulnerable to unauthenticated Stored Cross-Site Scripting (XSS) due to a predictable replacement hash used during the HTML minification process and abusing a regular expression. This allows an attacker to inject arbitrary HTML attributes in the final HTML output by anticipating the placeholder format.

Exploits (1)

github WORKING POC

by fearlessresponsesolution · tsqlpoc

https://github.com/fearlessresponsesolution/cve-pocs/tree/master/pocs/CVE-2026-3220

View Code ZIP pw:eip

The repository contains a functional Python exploit for CVE-2026-32201, demonstrating a SharePoint Server spoofing vulnerability via improper input validation. It includes a script to send crafted requests with spoofed sender details and a separate tool to generate malicious LNK files for CVE-2026-32202.

Classification

Working Poc 95%

Attack Type

Spoofing

Complexity

Moderate

Reliability

Reliable

Target: Microsoft SharePoint Server 2016, 2019, Subscription Edition < 16.0.19725.20210

No auth needed

Prerequisites: Target SharePoint Server URL · Recipient email · Spoofed sender email

devstral-2 · analyzed May 19, 2026 Full analysis →

References (1)

Core 1

Core References

Exploit exploit vdb-entry technical-description

https://wpscan.com/vulnerability/3ceabf11-23cd-4c38-ba14-014348b0ff2d/

Scores

CVSS v3 8.8

EPSS 0.0002

EPSS Percentile 3.8%

Attack Vector NETWORK

CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H

CISA SSVC

Vulnrichment

Exploitation poc

Automatable no

Technical Impact total

Details

CWE

CWE-79

Status published

Products (3)

None/Autoptimize < 3.1.15

None/Clearfy Cache < 2.4.2

None/Speed Optimizer < 7.7.9

Published May 18, 2026

Tracked Since May 18, 2026