WordPress ShortPixel Image Optimizer plugin <= 4.22.9 - Reflected Cross-Site Scripting (XSS) vulnerability

Reflected Cross-Site Scripting XSS vulnerability discovered by WPScanTeam in WordPress ShortPixel Image Optimizer plugin versions = 4.22.9. Solution Update the WordPress ShortPixel Image Optimizer plugin to the latest available version at least 4.22.10...

ShortPixel Image Optimizer < 4.22.10 - Reflected Cross-Site Scripting

The plugin does not escape a generated URLs before outputting them back in an attribute, leading to Reflected Cross-Site Scripting https://example.com/wp-admin/options-general.php?page=wp-shortpixel-settings&"alert/XSS/...

ShortPixel Image Optimizer < 4.22.10 - Reflected Cross-Site Scripting

The plugin does not escape a generated URLs before outputting them back in an attribute, leading to Reflected Cross-Site Scripting PoC https://example.com/wp-admin/options-general.php?page=wp-shortpixel-settings&"...

The vulnerability of the EWWW Image Optimizer plugin of the WordPress content management system, related to a violation of data protection mechanisms, allows attackers to execute arbitrary code.

The vulnerability of the EWWW Image Optimizer plugin of the WordPress content management system is related to a violation of data protection mechanisms. Exploiting this vulnerability allows an attacker who operates remotely to execute arbitrary code...

CVE-2016-20010

EWWW Image Optimizer before 2.8.5 allows remote command execution because it relies on a protection mechanism involving boolval, which is unavailable before PHP 5.5...

CVE-2016-20010

EWWW Image Optimizer before 2.8.5 allows remote command execution because it relies on a protection mechanism involving boolval, which is unavailable before PHP 5.5...

CVE-2016-20010

The CVE-2016-20010 vulnerability affects the WordPress plugin EWWW Image Optimizer prior to 2.8.5. The issue arises because it relies on a protection mechanism involving boolval that is not available before PHP 5.5, enabling remote command execution on affected installations. Affected product: EW...

WordPress 插件安全漏洞

WordPress Plugin is an open source application plugin for WordPress. A security vulnerability exists in the WordPress plugin EWWW Image Optimizer prior to version 2.8.5 that allows remote command execution because it relies on a protection mechanism involving boolval, which was not available prio...

WordPress EWWW Image Optimizer plugin <= 5.8.1 - Cross-Site Request Forgery (CSRF) vulnerability

Cross-Site Request Forgery CSRF vulnerability found by Jerome Bruandet NinTechNet in WordPress EWWW Image Optimizer plugin versions = 5.8.1. Solution Update the WordPress EWWW Image Optimizer plugin to the latest available version at least 5.8.2...

Reflected Cross-Site Scripting &#40;XSS&#41; in EWWW Image Optimizer WordPress Plugin

Advisory ID: HTB23234 Product: EWWW Image Optimizer WordPress plugin Vendor: Shane Bishop Vulnerable Versions: 2.0.1 and probably prior Tested Version: 2.0.1 Advisory Publication: September 17, 2014 without technical details Vendor Notification: September 17, 2014 Vendor Patch: September 24, 2014...

CVE-2014-6243

Cross-site scripting XSS vulnerability in the EWWW Image Optimizer plugin before 2.0.2 for WordPress allows remote attackers to inject arbitrary web script or HTML via the error parameter in the ewww-image-optimizer.php page to wp-admin/options-general.php, which is not properly handled in a pngo...

Cross site scripting

Cross-site scripting XSS vulnerability in the EWWW Image Optimizer plugin before 2.0.2 for WordPress allows remote attackers to inject arbitrary web script or HTML via the error parameter in the ewww-image-optimizer.php page to wp-admin/options-general.php, which is not properly handled in a pngo...

CVE-2014-6243

Cross-site scripting XSS vulnerability in the EWWW Image Optimizer plugin before 2.0.2 for WordPress allows remote attackers to inject arbitrary web script or HTML via the error parameter in the ewww-image-optimizer.php page to wp-admin/options-general.php, which is not properly handled in a pngo...

CVE-2014-6243

The CVE-2014-6243 vulnerability affects the WordPress plugin EWWW Image Optimizer, specifically versions prior to 2.0.2. A reflected Cross-Site Scripting (XSS) flaw exists in the ewww-image-optimizer.php page when crafting the page parameter passed to wp-admin/options-general.php. The error messa...

WordPress EWWW Image Optimizer 2.0.1 Cross Site Scripting Vulnerability

WordPress EWWW Image Optimizer plugin version 2.0.1 suffers from a cross site scripting vulnerability. Product: EWWW Image Optimizer WordPress plugin Vendor: Shane Bishop Vulnerable Versions: 2.0.1 and probably prior Tested Version: 2.0.1 Advisory Publication: September 17, 2014 without technical...

EWWW Image Optimizer 2.0.1 - Cross-Site Scripting (XSS)

The EWWW Image Optimizer WordPress plugin was affected by a Cross-Site Scripting XSS security vulnerability...

WordPress EWWW Image Optimizer 2.0.1 Cross Site Scripting

Advisory ID: HTB23234 Product: EWWW Image Optimizer WordPress plugin Vendor: Shane Bishop Vulnerable Versions: 2.0.1 and probably prior Tested Version: 2.0.1 Advisory Publication: September 17, 2014 without technical details Vendor Notification: September 17, 2014 Vendor Patch: September 24, 2014...

Reflected Cross-Site Scripting (XSS) in EWWW Image Optimizer WordPress Plugin

High-Tech Bridge Security Research Lab discovered vulnerability in EWWW Image Optimizer WordPress plugin, which can be exploited to perform Cross-Site Scripting XSS attacks against administrator of a WordPress website with vulnerable plugin. 1 Reflected Cross-Site Scripting XSS in EWWW Image...

Fedora Update for optipng FEDORA-2008-9633

Check for the Version of optipng OpenVAS Vulnerability Test Fedora Update for optipng FEDORA-2008-9633 Authors: System Generated Check Copyright: Copyright c 2009 Greenbone Networks GmbH, http://www.greenbone.net This program is free software; you can redistribute it and/or modify it under the...