Medium severity4.3NVD Advisory· Published Feb 24, 2025· Updated Apr 23, 2026
CVE-2025-27316
CVE-2025-27316
Description
Cross-Site Request Forgery (CSRF) vulnerability in hosting.io JPG, PNG Compression and Optimization wp-image-compression allows Cross Site Request Forgery.This issue affects JPG, PNG Compression and Optimization: from n/a through <= 1.7.35.
Affected products
1- Range: <=1.7.35
Patches
0No patches discovered yet.
Vulnerability mechanics
AI mechanics synthesis has not run for this CVE yet.
References
1News mentions
0No linked articles in our index yet.