Medium severity4.3NVD Advisory· Published Nov 14, 2022· Updated Jun 17, 2026
CVE-2022-2450
CVE-2022-2450
Description
The reSmush.it : the only free Image Optimizer & compress plugin WordPress plugin before 0.4.4 lacks authorization in various AJAX actions, allowing any logged-in users, such as subscribers to call them.
AI Insight
LLM-synthesized narrative grounded in this CVE's description and references.
Affected products
2- WordPress/reSmush.it : the only free Image Optimizer & compress plugindescription
- Range: <0.4.4
Patches
Vulnerability mechanics
References
1- wpscan.com/vulnerability/1b3ff124-f973-4584-a7d7-26cc404bfe2bnvdExploitThird Party Advisory
News mentions
0No linked articles in our index yet.