CVE-2023-30494

🗓️ 04 Sep 2023 10:28:30Reported by PatchstackType

Unauth. Reflected Cross-Site Scripting (XSS) vulnerability in ImageRecycle ImageRecycle pdf & image compression plugin <= 3.1.10 versions

Reporter	Title	Published	Views	Family All 13
Circl	CVE-2023-30494	4 Sep 202314:16	–	circl
CNNVD	WordPress plugin ImageRecycle pdf & image compression cross-site scripting vulnerability	4 Sep 202300:00	–	cnnvd
Cvelist	CVE-2023-30494 WordPress ImageRecycle pdf & image compression Plugin <= 3.1.10 is vulnerable to Cross Site Scripting (XSS)	4 Sep 202310:28	–	cvelist
EUVD	EUVD-2023-34909	3 Oct 202520:07	–	euvd
NVD	CVE-2023-30494	4 Sep 202311:15	–	nvd
OSV	CVE-2023-30494	4 Sep 202311:15	–	osv
Patchstack	WordPress ImageRecycle pdf & image compression Plugin <= 3.1.10 is vulnerable to Cross Site Scripting (XSS)	10 Aug 202300:00	–	patchstack
Prion	Cross site scripting	4 Sep 202311:15	–	prion
Positive Technologies	PT-2023-22730 · Imagerecycle · Imagerecycle Pdf & Image Compression Plugin	4 Sep 202300:00	–	ptsecurity
RedhatCVE	CVE-2023-30494	23 May 202505:18	–	redhatcve

NVD

Vulners

Node

imagerecycle imagerecycle_pdf_&_image_compressionRange<3.1.11wordpress

[
  {
    "collectionURL": "https://wordpress.org/plugins",
    "defaultStatus": "unaffected",
    "packageName": "imagerecycle-pdf-image-compression",
    "product": "ImageRecycle pdf & image compression",
    "vendor": "ImageRecycle",
    "versions": [
      {
        "changes": [
          {
            "at": "3.1.11",
            "status": "unaffected"
          }
        ],
        "lessThanOrEqual": "3.1.10",
        "status": "affected",
        "version": "n/a",
        "versionType": "custom"
      }
    ]
  }
]

Source	Link
patchstack	www.patchstack.com/database/vulnerability/imagerecycle-pdf-image-compression/wordpress-imagerecycle-pdf-image-compression-plugin-3-1-10-cross-site-scripting-xss-vulnerability

17 Jun 2026 05:54Current

6Medium risk

Vulners AI Score6

CVSS 3.16.1 - 7.1

EPSS0.00331

SSVC

CWE-79