2 matches found
CVE-2025-6626
The ShortPixel Adaptive Images – WebP, AVIF, CDN, Image Optimization plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the API URL Setting in all versions up to, and including, 3.10.3 due to insufficient input sanitization and output escaping. This makes it possible for...
WordPress ShortPixel Adaptive Images – WebP, AVIF, CDN, Image Optimization plugin <= 3.10.4 - Authenticated (Administrator+) Stored Cross-Site Scripting via API URL vulnerability
Authenticated Administrator+ Stored Cross-Site Scripting via API URL vulnerability discovered by Jonas Benjamin Friedli in WordPress Plugin ShortPixel Adaptive Images versions = 3.10.4...