VYPR

Wp Compress Image Optimizer

by WordPress

Source repositories

CVEs (4)

  • CVE-2024-1934HigApr 9, 2024
    risk 0.49cvss 7.5epss 0.01

    The WP Compress – Image Optimizer plugin for WordPress is vulnerable to unauthorized modification of data due to a missing capability check on the 'wps_local_compress::__construct' function in all versions up to, and including, 6.11.10. This makes it possible for…

  • CVE-2024-4445MedMay 14, 2024
    risk 0.35cvss 6.5epss 0.00

    The WP Compress – Image Optimizer [All-In-One] plugin for WordPress is vulnerable to unauthorized modification of data due to a missing capability check on the several functions in versions up to, and including, 6.20.01. This makes it possible for authenticated attackers, with…

  • CVE-2025-57899MedSep 22, 2025
    risk 0.34cvss 5.3epss 0.00

    Missing Authorization vulnerability in AresIT WP Compress wp-compress-image-optimizer allows Accessing Functionality Not Properly Constrained by ACLs.This issue affects WP Compress: from n/a through <= 6.50.54.

  • CVE-2023-6812MedMay 14, 2024
    risk 0.21cvss 4.3epss 0.00

    The WP Compress – Image Optimizer [All-In-One plugin for WordPress is vulnerable to Open Redirect in all versions up to, and including, 6.20.01. This is due to insufficient validation on the redirect url supplied via the 'css' parameter. This makes it possible for…