CVE-2025-47479

Critical CVSS: 9.8

Weak Authentication vulnerability in AresIT WP Compress wp-compress-image-optimizer allows Authentication Abuse.This issue affects WP Compress: from n/a through <= 6.30.30.

Vendor

Wpcompress

Product

Wp Compress

CWE

CWE-1390

Yayın Tarihi

2025-07-04 12:15:28

Güncelleme

2026-04-01 17:23:52

Source Identifier

audit@patchstack.com

KEV Date Added

Kategoriler

CWE-1390 Wp Compress CRITICAL Wpcompress 2025

Referanslar

https://patchstack.com/database/Wordpress/Plugin/wp-compress-image-optimizer/vulnerability/wordpress-wp-compress-6-30-30-broken-authentication-vulnerability?_s_id=cve

Benzer Kayıtlar

High

CVE-2025-47546

Cross-Site Request Forgery (CSRF) vulnerability in AresIT WP Compress wp-compress-image-optimizer allows Cross Site Requ…

High

CVE-2025-2110

The WP Compress – Instant Performance & Speed Optimization plugin for WordPress is vulnerable to unauthorized access, mo…

Medium

CVE-2025-2109

The WP Compress – Instant Performance & Speed Optimization plugin for WordPress is vulnerable to Server-Side Request For…

Medium

CVE-2024-12047

The WP Compress – Instant Performance & Speed Optimization plugin for WordPress is vulnerable to Reflected Cross-Site Sc…