Lucene search

CVE-2024-4445 WP Compress – Image Optimizer [All-In-One] <= 6.20.01 - Missing Authorization

🗓️ 14 May 2024 05:59:32Reported by WordfenceType

Vulnerability in WP Compress Image Optimizer plugin allowing unauthorized data modificatio

5 of 5AI Insights are available for you today

Leverage the power of AI to quickly understand vulnerabilities, impacts, and exploitability

Reporter	Title	Published	Views	Family All 6
NVD	CVE-2024-4445	14 May 202416:17	–	nvd
WPVulnDB	WP Compress – Image Optimizer [All-In-One] < 6.20.02 - Missing Authorization	13 May 202400:00	–	wpvulndb
CVE	CVE-2024-4445	14 May 202416:17	–	cve
Patchstack	WordPress WP Compress – Image Optimizer [All-In-One] Plugin <= 6.20.01 is vulnerable to Broken Access Control	14 May 202400:00	–	patchstack
Vulnrichment	CVE-2024-4445 WP Compress – Image Optimizer [All-In-One] <= 6.20.01 - Missing Authorization	14 May 202405:32	–	vulnrichment
Wordfence Blog	Wordfence Intelligence Weekly WordPress Vulnerability Report (May 13, 2024 to May 19, 2024)	23 May 202415:00	–	wordfence

[
  {
    "vendor": "smartersite",
    "product": "WP Compress – Image Optimizer [All-In-One]",
    "versions": [
      {
        "version": "*",
        "status": "affected",
        "lessThanOrEqual": "6.20.01",
        "versionType": "semver"
      }
    ],
    "defaultStatus": "unaffected"
  }
]

Source	Link
plugins	www.plugins.trac.wordpress.org/changeset/3082085/
wordfence	www.wordfence.com/threat-intel/vulnerabilities/id/830f53a4-da3b-4a95-99f1-c4a4c8e6944c
plugins	www.plugins.trac.wordpress.org/browser/wp-compress-image-optimizer/trunk/classes/mu.class.php

Transform Your Security Services

Elevate your offerings with Vulners' advanced Vulnerability Intelligence. Contact us for a demo and discover the difference comprehensive, actionable intelligence can make in your security strategy.

Book a live demo

14 May 2024 05:32Current

7High risk

Vulners AI Score7

CVSS36.5

EPSS0.00161