WordPress plugin Instant Images security vulnerability

WordPress and WordPress plugin are both products of the WordPress Foundation.WordPress is a blogging platform developed using the PHP language. The platform supports personal blog sites on servers running PHP and MySQL.WordPress plugin is an application plugin. A security vulnerability exists in...

WordPress Instant Images Plugin <= 5.1.0.2 is vulnerable to Server Side Request Forgery (SSRF)

Software Instant Images Type Plugin Vulnerable versions = 5.1.0.2 Fixed in 5.2.0 OWASP Top 10 A1: Injection Classification Server Side Request Forgery SSRF CVE CVE-2023-27451 Patch priority Medium CVSS severity Medium 7.2 Developer Claim ownership PSID 7950e8634dee Credits Universe Required...

WordPress Instant Images – One Click Unsplash Uploads plugin <= 4.4.0 - Authenticated Stored Cross-Site Scripting (XSS) vulnerability

Authenticated Stored Cross-Site Scripting XSS vulnerability discovered by m0ze in WordPress Instant Images – One Click Unsplash Uploads plugin versions = 4.4.0. Solution Update the WordPress Instant Images – One Click Unsplash Uploads plugin to the latest available version at least 4.4.0.1...