3 matches found
CVE-2024-1934
The WP Compress – Image Optimizer plugin for WordPress is vulnerable to unauthorized modification of data due to a missing capability check on the 'wpslocalcompress::construct' function in all versions up to, and including, 6.11.10. This makes it possible for unauthenticated attackers to reset th...
CVE-2024-1934
The WP Compress – Image Optimizer plugin for WordPress is vulnerable to unauthorized modification of data due to a missing capability check on the 'wpslocalcompress::construct' function in all versions up to, and including, 6.11.10. This makes it possible for unauthenticated attackers to reset th...
PT-2024-18434 · WordPress · Wp Compress
Name of the Vulnerable Software and Affected Versions: WP Compress – Image Optimizer plugin for WordPress versions up to, and including, 6.11.10 Description: The issue allows unauthorized modification of data due to a missing capability check on the wps local compress:: construct function. This...