Wpcompress Wp_compress
11 CVEs affecting Wpcompress Wp_compress. Latest disclosed: 2025-07-04. Critical: 1, High: 4.
| CVE | Severity | Score | Published | Summary |
|---|---|---|---|---|
CVE-2023-6699 | Critical | 9.1 | 2024-01-11 | The WP Compress – Image Optimizer [All-In-One] plugin for WordPress is vulnerable to Directory Traversal in all versions up to, and including, 6.10.33 via the… |
CVE-2025-2110 | High | 8.8 | 2025-03-26 | The WP Compress – Instant Performance & Speed Optimization plugin for WordPress is vulnerable to unauthorized access, modification, and loss of data due to mis… |
CVE-2024-1934 | High | 7.5 | 2024-04-09 | The WP Compress – Image Optimizer plugin for WordPress is vulnerable to unauthorized modification of data due to a missing capability check on the 'wps_local_c… |
CVE-2025-47546 | High | 7.1 | 2025-05-07 | Cross-Site Request Forgery (CSRF) vulnerability in AresIT WP Compress wp-compress-image-optimizer allows Cross Site Request Forgery.This issue affects WP Compr… |
CVE-2024-47384 | High | 7.1 | 2024-10-05 | Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in AresIT WP Compress wp-compress-image-optimizer allows Ref… |
CVE-2024-4445 | Medium | 6.5 | 2024-05-14 | The WP Compress – Image Optimizer [All-In-One] plugin for WordPress is vulnerable to unauthorized modification of data due to a missing capability check on the… |
CVE-2024-12047 | Medium | 6.1 | 2025-01-04 | The WP Compress – Instant Performance & Speed Optimization plugin for WordPress is vulnerable to Reflected Cross-Site Scripting via the ‘custom_server’ paramet… |
CVE-2025-2109 | Medium | 5.8 | 2025-03-25 | The WP Compress – Instant Performance & Speed Optimization plugin for WordPress is vulnerable to Server-Side Request Forgery in all versions up to, and includi… |
CVE-2025-47479 | Medium | 5.3 | 2025-07-04 | Weak Authentication vulnerability in AresIT WP Compress wp-compress-image-optimizer allows Authentication Abuse.This issue affects WP Compress: from n/a throug… |
CVE-2023-6812 | Medium | 4.3 | 2024-05-14 | The WP Compress – Image Optimizer [All-In-One plugin for WordPress is vulnerable to Open Redirect in all versions up to, and including, 6.20.01. This is due to… |
CVE-2024-32106 | Medium | 4.3 | 2024-04-11 | Cross-Site Request Forgery (CSRF) vulnerability in WP Compress WP Compress – Image Optimizer [All-In-One].This issue affects WP Compress – Image Optimizer [All… |