Lucene search
K

176 matches found

Vulnrichment
Vulnrichment
added 2025/08/02 7:24 a.m.4 views

CVE-2025-6626 ShortPixel Adaptive Images – WebP, AVIF, CDN, Image Optimization <= 3.10.4 - Authenticated (Administrator+) Stored Cross-Site Scripting via API URL

The ShortPixel Adaptive Images – WebP, AVIF, CDN, Image Optimization plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the API URL Setting in all versions up to, and including, 3.10.3 due to insufficient input sanitization and output escaping. This makes it possible for...

4.4CVSS5.5AI score0.00228EPSS
Exploits0References3
CNNVD
CNNVD
added 2025/08/02 12:0 a.m.4 views

WordPress plugin ShortPixel Adaptive Images 跨站脚本漏洞

WordPress and WordPress plugin are both products of the WordPress Foundation.WordPress is a blogging platform developed using the PHP language. The platform supports personal blog sites on PHP and MySQL servers.WordPress plugin is an application plugin. A cross-site scripting vulnerability exists...

4.4CVSS5.7AI score0.00228EPSS
Exploits0References4
Positive Technologies
Positive Technologies
added 2025/08/02 12:0 a.m.13 views

PT-2025-31724 · WordPress · Shortpixel Adaptive Images

Name of the Vulnerable Software and Affected Versions: ShortPixel Adaptive Images – WebP, AVIF, CDN, Image Optimization plugin for WordPress versions through 3.10.3 Description: The ShortPixel Adaptive Images – WebP, AVIF, CDN, Image Optimization plugin for WordPress is susceptible to Stored...

4.4CVSS5.7AI score0.00228EPSS
Exploits0References8
Patchstack
Patchstack
added 2025/08/01 10:26 p.m.8 views

WordPress ShortPixel Adaptive Images – WebP, AVIF, CDN, Image Optimization plugin <= 3.10.4 - Authenticated (Administrator+) Stored Cross-Site Scripting via API URL vulnerability

Authenticated Administrator+ Stored Cross-Site Scripting via API URL vulnerability discovered by Jonas Benjamin Friedli in WordPress Plugin ShortPixel Adaptive Images versions = 3.10.4...

4.4CVSS5.5AI score0.00228EPSS
Exploits0References1Affected Software1
RedhatCVE
RedhatCVE
added 2025/05/23 10:12 a.m.11 views

CVE-2024-31230

Missing Authorization vulnerability in ShortPixel ShortPixel Adaptive Images shortpixel-adaptive-images.This issue affects ShortPixel Adaptive Images: from n/a through = 3.8.2...

5.3CVSS7.2AI score0.00388EPSS
Exploits0References1
RedhatCVE
RedhatCVE
added 2025/05/23 8:41 a.m.5 views

CVE-2024-35172

Server-Side Request Forgery SSRF vulnerability in ShortPixel ShortPixel Adaptive Images shortpixel-adaptive-images.This issue affects ShortPixel Adaptive Images: from n/a through = 3.8.3...

4.4CVSS5.9AI score0.00363EPSS
Exploits0References1
RedhatCVE
RedhatCVE
added 2025/05/23 8:40 a.m.3 views

CVE-2024-4689

Cross-Site Request Forgery CSRF vulnerability in ShortPixel ShortPixel Adaptive Images shortpixel-adaptive-images.This issue affects ShortPixel Adaptive Images: from n/a through = 3.8.3...

4.3CVSS5.9AI score0.00252EPSS
Exploits0References1
RedhatCVE
RedhatCVE
added 2025/05/23 7:30 a.m.9 views

CVE-2024-48044

Missing Authorization vulnerability in ShortPixel ShortPixel Image Optimizer shortpixel-image-optimiser allows Exploiting Incorrectly Configured Access Control Security Levels.This issue affects ShortPixel Image Optimizer: from n/a through = 5.6.3...

8.8CVSS5.9AI score0.00383EPSS
Exploits0References1
RedhatCVE
RedhatCVE
added 2025/05/23 5:10 a.m.9 views

CVE-2023-32512

Cross-Site Request Forgery CSRF vulnerability in ShortPixel ShortPixel Adaptive Images – WebP, AVIF, CDN, Image Optimization plugin = 3.7.1 versions...

8.8CVSS8.5AI score0.00312EPSS
Exploits0References1
RedhatCVE
RedhatCVE
added 2025/05/23 2:54 a.m.7 views

CVE-2023-0334

The ShortPixel Adaptive Images WordPress plugin before 3.6.3 does not sanitise and escape a parameter before outputting it back in the page, leading to a Reflected Cross-Site Scripting which could be used against any high privilege users such as admin...

6.1CVSS6AI score0.00881EPSS
Exploits2References1
RedhatCVE
RedhatCVE
added 2025/04/03 9:47 p.m.12 views

CVE-2025-30853

Missing Authorization vulnerability in ShortPixel ShortPixel Adaptive Images shortpixel-adaptive-images allows Exploiting Incorrectly Configured Access Control Security Levels.This issue affects ShortPixel Adaptive Images: from n/a through = 3.10.0...

5.4CVSS7.2AI score0.0042EPSS
Exploits0References1
RedhatCVE
RedhatCVE
added 2025/04/03 9:34 p.m.8 views

CVE-2025-31081

Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in ShortPixel Enable Media Replace enable-media-replace allows Reflected XSS.This issue affects Enable Media Replace: from n/a through = 4.1.5...

7.1CVSS7.2AI score0.0039EPSS
Exploits0References1
NVD
NVD
added 2025/04/01 9:15 p.m.13 views

CVE-2025-31081

Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in ShortPixel Enable Media Replace enable-media-replace allows Reflected XSS.This issue affects Enable Media Replace: from n/a through = 4.1.5...

7.1CVSS0.0039EPSS
Exploits0References1
NVD
NVD
added 2025/04/01 9:15 p.m.17 views

CVE-2025-30853

Missing Authorization vulnerability in ShortPixel ShortPixel Adaptive Images shortpixel-adaptive-images allows Exploiting Incorrectly Configured Access Control Security Levels.This issue affects ShortPixel Adaptive Images: from n/a through = 3.10.0...

5.4CVSS0.0042EPSS
Exploits0References1
Vulnrichment
Vulnrichment
added 2025/04/01 8:58 p.m.17 views

CVE-2025-31081 WordPress Enable Media Replace plugin <= 4.1.5 - Reflected Cross Site Scripting (XSS) vulnerability

Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in ShortPixel Enable Media Replace allows Reflected XSS. This issue affects Enable Media Replace: from n/a through 4.1.5...

7.1CVSS7.2AI score0.0039EPSS
Exploits0References1
Vulnrichment
Vulnrichment
added 2025/04/01 8:58 p.m.11 views

CVE-2025-30853 WordPress ShortPixel Adaptive Images plugin <= 3.10.0 - Broken Authentication vulnerability

Missing Authorization vulnerability in ShortPixel ShortPixel Adaptive Images shortpixel-adaptive-images allows Exploiting Incorrectly Configured Access Control Security Levels.This issue affects ShortPixel Adaptive Images: from n/a through = 3.10.0...

5.4CVSS7.3AI score0.0042EPSS
Exploits0References1
Cvelist
Cvelist
added 2025/04/01 8:58 p.m.30 views

CVE-2025-30853 WordPress ShortPixel Adaptive Images plugin <= 3.10.0 - Broken Authentication vulnerability

Missing Authorization vulnerability in ShortPixel ShortPixel Adaptive Images shortpixel-adaptive-images allows Exploiting Incorrectly Configured Access Control Security Levels.This issue affects ShortPixel Adaptive Images: from n/a through = 3.10.0...

5.4CVSS0.0042EPSS
Exploits0References1
CVE
CVE
added 2025/04/01 8:58 p.m.52 views

CVE-2025-30853

Technical details about CVE-2025-30853 are not provided in the supplied documents. No confirmed affected versions, impact, exploits, or remediation are included; monitor for official advisories and vendor updates.

5.4CVSS7.2AI score0.0042EPSS
Exploits0References1
Patchstack
Patchstack
added 2025/04/01 10:49 a.m.9 views

WordPress ShortPixel Adaptive Images plugin <= 3.10.0 - Broken Authentication vulnerability

Broken Authentication vulnerability discovered by Peter Thaleikis in WordPress Plugin ShortPixel Adaptive Images versions = 3.10.0...

5.4CVSS8.4AI score0.0042EPSS
Exploits0Affected Software1
Positive Technologies
Positive Technologies
added 2025/04/01 12:0 a.m.5 views

PT-2025-14397 · Shortpixel · Shortpixel Adaptive Images

Name of the Vulnerable Software and Affected Versions: ShortPixel Adaptive Images versions 3.10.0 and earlier Description: The issue is related to a Missing Authorization vulnerability, which allows exploiting incorrectly configured access control security levels. Recommendations: For versions...

5.4CVSS6.2AI score0.0042EPSS
Exploits0References3
Rows per page
Query Builder