VYPR

Smart Auto Upload Images

by WordPress

Source repositories

CVEs (2)

  • CVE-2025-12161HigNov 8, 2025
    risk 0.57cvss 8.8epss 0.00

    The Smart Auto Upload Images plugin for WordPress is vulnerable to arbitrary file uploads due to missing file type validation in the auto-image creation functionality in all versions up to, and including, 1.2.0. This makes it possible for authenticated attackers, with…

  • CVE-2026-23803MedFeb 19, 2026
    risk 0.42cvss 6.4epss 0.00

    Server-Side Request Forgery (SSRF) vulnerability in Burhan Nasir Smart Auto Upload Images smart-auto-upload-images allows Server Side Request Forgery.This issue affects Smart Auto Upload Images: from n/a through <= 1.2.2.