CVE-2025-47546

High CVSS: 8.8

Cross-Site Request Forgery (CSRF) vulnerability in AresIT WP Compress wp-compress-image-optimizer allows Cross Site Request Forgery.This issue affects WP Compress: from n/a through <= 6.30.30.

Vendor

Wpcompress

Product

Wp Compress

CWE

CWE-352

Yayın Tarihi

2025-05-07 15:16:11

Güncelleme

2026-04-01 17:24:02

Source Identifier

audit@patchstack.com

KEV Date Added

Kategoriler

CWE-352 Wp Compress HIGH Wpcompress 2025

Referanslar

https://patchstack.com/database/Wordpress/Plugin/wp-compress-image-optimizer/vulnerability/wordpress-wp-compress-6-30-30-cross-site-request-forgery-csrf-vulnerability?_s_id=cve

Benzer Kayıtlar

Critical

CVE-2025-47479

Weak Authentication vulnerability in AresIT WP Compress wp-compress-image-optimizer allows Authentication Abuse.This iss…

High

CVE-2025-2110

The WP Compress – Instant Performance & Speed Optimization plugin for WordPress is vulnerable to unauthorized access, mo…

Medium

CVE-2025-2109

The WP Compress – Instant Performance & Speed Optimization plugin for WordPress is vulnerable to Server-Side Request For…

Medium

CVE-2024-12047

The WP Compress – Instant Performance & Speed Optimization plugin for WordPress is vulnerable to Reflected Cross-Site Sc…