📦

shortpixel_adaptive_images

Vendor: shortpixel

Actively Exploited 0 CISA KEV List

PoC / Exploits 0 Code Available

Total RCEs 0 Remote Access

Total CVEs 5 Total Indexed

Avg. EPSS 2.78% Exploit Prob.

Latest CVE CVE-2023-32512 Nov 09

Security Vulnerability Index

Page 1 / 1

4.3 CVSS

CVE-2023-32512

Cross-Site Request Forgery (CSRF) vulnerability in ShortPixel ShortPixel Adaptive Images – WebP, AVIF, CDN, Image Optimization plugin <= 3.7.1 versions.

EPSS: 0.07%

Severity: MEDIUM

Nov 09, 2023

6.1 CVSS

CVE-2023-0334

The ShortPixel Adaptive Images WordPress plugin before 3.6.3 does not sanitise and escape a parameter before outputting it back in the page, leading to a Reflected Cross-Site Scripting which could be used against any high privilege users such as admin

EPSS: 8.13%

Severity: MEDIUM

Feb 27, 2023

4.3 CVSS

CVE-2022-29417

Plugin Settings Update vulnerability in ShortPixel's ShortPixel Adaptive Images plugin <= 3.3.1 at WordPress allows an attacker with a low user role like a subscriber or higher to change the plugin settings.

EPSS: 0.14%

Severity: MEDIUM

Apr 25, 2022

Displaying 3 of 5 Total Entries

Total 1 Sections