Shortpixel Shortpixel Image Optimizer – Optimize Images, Convert Webp & Avif
3 CVEs affecting Shortpixel Shortpixel Image Optimizer – Optimize Images, Convert Webp & Avif. Latest disclosed: 2026-03-26. Critical: 0, High: 0.
| CVE | Severity | Score | Published | Summary |
|---|---|---|---|---|
CVE-2026-4335 | Medium | 5.4 | 2026-03-26 | The ShortPixel Image Optimizer plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the attachment post_title in all versions up to, and inclu… |
CVE-2025-11378 | Medium | 5.4 | 2025-10-18 | The ShortPixel Image Optimizer – Optimize Images, Convert WebP & AVIF plugin for WordPress is vulnerable to unauthorized modification of data due to a missing… |
CVE-2026-1246 | Medium | 4.9 | 2026-02-05 | The ShortPixel Image Optimizer plugin for WordPress is vulnerable to Arbitrary File Read via path traversal in the 'loadFile' parameter in all versions up to… |