Lucene search

Sirv Security Vulnerabilities

cve

CVE-2024-5853

The Image Optimizer, Resizer and CDN – Sirv plugin for WordPress is vulnerable to arbitrary file uploads due to missing file type validation in the sirv_upload_file_by_chanks AJAX action in all versions up to, and including, 7.2.6. This makes it possible for authenticated attackers, with...

9.9CVSS

9.7AI Score

0.001EPSS

2024-06-19 06:15 AM

cve

CVE-2024-32959

Improper Privilege Management vulnerability in Sirv allows Privilege Escalation.This issue affects Sirv: from n/a through...

8.8CVSS

6.8AI Score

0.0004EPSS

2024-05-17 10:15 AM

cve

CVE-2023-50898

Missing Authorization vulnerability in sirv.Com Sirv.This issue affects Sirv: from n/a through...

5.4CVSS

5.5AI Score

0.0004EPSS

2024-03-15 03:15 PM

cve

CVE-2024-27950

Missing Authorization vulnerability in sirv.Com Image Optimizer, Resizer and CDN – Sirv.This issue affects Image Optimizer, Resizer and CDN – Sirv: from n/a through...

5.4CVSS

6.4AI Score

0.0004EPSS

2024-03-01 08:15 AM

cve

CVE-2024-27949

Server-Side Request Forgery (SSRF) vulnerability in sirv.Com Image Optimizer, Resizer and CDN – Sirv.This issue affects Image Optimizer, Resizer and CDN – Sirv: from n/a through...

5.4CVSS

6.5AI Score

0.0004EPSS

2024-03-01 08:15 AM

cve

CVE-2016-10950

The sirv plugin before 1.3.2 for WordPress has SQL injection via the id...

8.8CVSS

9.1AI Score

0.002EPSS

2019-09-13 01:15 PM

124