CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

55 matches found

ShortPixel Adaptive Images < 3.6.3 - Cross Site Scripting

The plugin does not sanitise and escape a parameter before outputting it back in the page, leading to a Reflected Cross-Site Scripting which could be used against any high privilege users such as admin id: CVE-2023-0334 info: name: ShortPixel Adaptive Images 3.6.3 - Cross Site Scripting author:...

6.1CVSS6.8AI score0.00881EPSS

Exploits2References2

NVD•added yesterday•3 views

CVE-2026-56066

Unauthenticated Arbitrary File Deletion in ShortPixel Adaptive Images = 3.11.4 versions...

5.8CVSS

Exploits0References1

CVE•added yesterday•6 views

CVE-2026-56066

CVE-2026-56066 affects the WordPress ShortPixel Adaptive Images plugin up to version 3.11.4, describing an unauthenticated Arbitrary File Deletion vulnerability. The connected records confirm the affected product and the nature of the issue but do not provide details on attack vectors, root cause...

5.8CVSS5.8AI score

Exploits0References1

Cvelist•added yesterday•17 views

CVE-2026-56066 WordPress ShortPixel Adaptive Images plugin <= 3.11.4 - Arbitrary File Deletion vulnerability

Unauthenticated Arbitrary File Deletion in ShortPixel Adaptive Images = 3.11.4 versions...

5.8CVSS

Exploits0References1

EUVD•added yesterday•3 views

EUVD-2026-39719

Unauthenticated Arbitrary File Deletion in ShortPixel Adaptive Images = 3.11.4 versions...

5.8CVSS5.8AI score

Exploits0References1

EUVD•added 2025/10/03 8:7 p.m.•3 views

EUVD-2022-33755

Malicious code in bioql PyPI...

4.3CVSS4.8AI score0.00595EPSS

Exploits0References2

EUVD•added 2025/10/03 8:7 p.m.•4 views

EUVD-2024-29126

Malicious code in bioql PyPI...

5.3CVSS8.8AI score0.00388EPSS

Exploits0References1

EUVD•added 2025/10/03 8:7 p.m.•1 views

EUVD-2024-44289

Malicious code in bioql PyPI...

4.3CVSS6.6AI score0.0025EPSS

Exploits0References1

EUVD•added 2025/10/03 8:7 p.m.•2 views

EUVD-2025-9473

Malicious code in bioql PyPI...

5.4CVSS6.6AI score0.00391EPSS

Exploits0References2

RedhatCVE•added 2025/08/04 9:33 a.m.•13 views

CVE-2025-6626

The ShortPixel Adaptive Images – WebP, AVIF, CDN, Image Optimization plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the API URL Setting in all versions up to, and including, 3.10.3 due to insufficient input sanitization and output escaping. This makes it possible for...

4.4CVSS6AI score0.00219EPSS

Exploits0References1

Cvelist•added 2025/08/02 7:24 a.m.•20 views

CVE-2025-6626 ShortPixel Adaptive Images – WebP, AVIF, CDN, Image Optimization <= 3.10.4 - Authenticated (Administrator+) Stored Cross-Site Scripting via API URL

4.4CVSS0.00219EPSS

Exploits0References3

Vulnrichment•added 2025/08/02 7:24 a.m.•4 views

CVE-2025-6626 ShortPixel Adaptive Images – WebP, AVIF, CDN, Image Optimization <= 3.10.4 - Authenticated (Administrator+) Stored Cross-Site Scripting via API URL

4.4CVSS5.5AI score0.00219EPSS

Exploits0References3

CVE•added 2025/08/02 7:24 a.m.•29 views

CVE-2025-6626

The CVE-2025-6626 entry concerns the ShortPixel Adaptive Images – WebP, AVIF, CDN, Image Optimization plugin for WordPress. It describes a Stored Cross-Site Scripting (XSS) vulnerability via the API URL Setting in all versions up to 3.10.4 (per Patchstack detail; other sources list up to 3.10.3)....

4.4CVSS5.5AI score0.00219EPSS

Exploits0References3

CNNVD•added 2025/08/02 12:0 a.m.•4 views

WordPress plugin ShortPixel Adaptive Images 跨站脚本漏洞

WordPress and WordPress plugin are both products of the WordPress Foundation.WordPress is a blogging platform developed using the PHP language. The platform supports personal blog sites on PHP and MySQL servers.WordPress plugin is an application plugin. A cross-site scripting vulnerability exists...

4.4CVSS5.7AI score0.00219EPSS

Exploits0References4

RedhatCVE•added 2025/05/23 8:41 a.m.•3 views

CVE-2024-35172

Server-Side Request Forgery SSRF vulnerability in ShortPixel ShortPixel Adaptive Images shortpixel-adaptive-images.This issue affects ShortPixel Adaptive Images: from n/a through = 3.8.3...

4.4CVSS5.9AI score0.00363EPSS

Exploits0References1

RedhatCVE•added 2025/05/23 8:40 a.m.•1 views

CVE-2024-4689

Cross-Site Request Forgery CSRF vulnerability in ShortPixel ShortPixel Adaptive Images shortpixel-adaptive-images.This issue affects ShortPixel Adaptive Images: from n/a through = 3.8.3...

4.3CVSS5.9AI score0.0025EPSS

Exploits0References1

RedhatCVE•added 2025/05/23 5:10 a.m.•7 views

CVE-2023-32512

Cross-Site Request Forgery CSRF vulnerability in ShortPixel ShortPixel Adaptive Images – WebP, AVIF, CDN, Image Optimization plugin = 3.7.1 versions...

8.8CVSS8.5AI score0.00312EPSS

Exploits0References1

RedhatCVE•added 2025/05/23 2:54 a.m.•5 views

CVE-2023-0334

The ShortPixel Adaptive Images WordPress plugin before 3.6.3 does not sanitise and escape a parameter before outputting it back in the page, leading to a Reflected Cross-Site Scripting which could be used against any high privilege users such as admin...

6.1CVSS6AI score0.00881EPSS

Exploits2References1

RedhatCVE•added 2025/04/03 9:47 p.m.•10 views

CVE-2025-30853

Missing Authorization vulnerability in ShortPixel ShortPixel Adaptive Images shortpixel-adaptive-images allows Exploiting Incorrectly Configured Access Control Security Levels.This issue affects ShortPixel Adaptive Images: from n/a through = 3.10.0...

5.4CVSS7.2AI score0.00391EPSS

Exploits0References1

NVD•added 2025/04/01 9:15 p.m.•16 views

CVE-2025-30853

5.4CVSS0.00391EPSS

Exploits0References1

Rows per page

Query Builder

Family

Bulletin Type

Min CVSS Score

Date

Order by