User

Welcome to WordPress Community Forum. Please login or sign up.

May 05, 2024, 08:17 AM

Login with username, password and session length

Shoutbox

Recent

Stats

Members
Stats
  • Total Posts: 55
  • Total Topics: 45
  • Online today: 10
  • Online ever: 136 (Apr 17, 2022, 11:37 PM)
Users Online
  • Users: 0
  • Guests: 1
  • Total: 1

Online

1 Guest, 0 Users

WordPress ShortPixel Image Optimizer plugin <= 4.22.9 - XSS Vulnerability

Started by Kailash, Jun 15, 2022, 10:12 AM

Previous topic - Next topic

WordPress Premium Themes


Print
Go Down Pages1
User actions

Kailash

Jun 15, 2022, 10:12 AM
WordPress ShortPixel Image Optimizer plugin <= 4.22.9 - Reflected Cross-Site Scripting (XSS) vulnerability

Plugin name: ShortPixel Image Optimizer
Vulnerable versions: <= 4.22.9
Fixed in: 4.22.10
CVE ID: N/A
Classification: Cross Site Scripting (XSS)
Publicly disclosed: 2022-06-14

Vulnerability Details

Reflected Cross-Site Scripting (XSS) vulnerability discovered by WPScanTeam in WordPress ShortPixel Image Optimizer plugin (versions <= 4.22.9).

Solution

Update the WordPress ShortPixel Image Optimizer plugin to the latest available version (at least 4.22.10).

Plugin Link: https://wordpress.org/plugins/shortpixel-image-optimiser/

WordPress Premium Themes


Print
Go Up Pages1
User actions