| CVE ID | Title | Vendor | Product | Severity | CVSS Score | Published At | AI Analysis |
|---|---|---|---|---|---|---|---|
| CVE-2026-2430 | Autoptimize <= 3.1.14 - Authenticated (Contributor+) Stored Cross-Site Scripting via Lazy-loaded Image Attributes | optimizingmatters | Autoptimize | Medium | 6.4 | 2026-03-20 23:25:14 | Deep Dive |
| CVE-2026-2352 | Autoptimize <= 3.1.14 - Authenticated (Contributor+) Stored Cross-Site Scripting via 'ao_post_preload' Meta Value | optimizingmatters | Autoptimize | Medium | 6.4 | 2026-03-20 23:25:12 | Deep Dive |
| CVE-2025-13401 | Autoptimize <= 3.1.13 - Authenticated (Contributor+) Stored Cross-Site Scripting | optimizingmatters | Autoptimize | Medium | 6.4 | 2025-12-03 13:52:45 | Deep Dive |
| CVE-2024-31288 | WordPress RapidLoad plugin <= 2.2.11 - Server Side Request Forgery (SSRF) vulnerability | RapidLoad | RapidLoad Power-Up for Autoptimize | High | 7.2 | 2024-04-07 17:18:47 | Deep Dive |
| CVE-2022-47593 | WordPress RapidLoad Power-Up for Autoptimize Plugin <= 1.6.35 is vulnerable to SQL Injection | RapidLoad | RapidLoad Power-Up for Autoptimize | High | 8.5 | 2023-06-22 12:45:41 | Deep Dive |
| CVE-2023-2113 | Autoptimize < 3.1.7 - Admin+ Stored Cross-Site Scripting via Settings Import | Unknown | Autoptimize | 中危 | - | 2023-05-30 07:49:13 | Deep Dive |
| CVE-2023-1472 | RapidLoad Power-Up for Autoptimize <= 1.7.1 - Cross-Site Request Forgery | shakee93 | RapidLoad AI – Optimize Web Vitals Automatically | Medium | 6.3 | 2023-03-17 14:21:33 | Deep Dive |
| CVE-2023-1335 | RapidLoad Power-Up for Autoptimize <= 1.7.1 - Missing Authorization in 'ucss_connect' | shakee93 | RapidLoad AI – Optimize Web Vitals Automatically | Medium | 4.3 | 2023-03-10 19:20:36 | Deep Dive |
| CVE-2023-1338 | RapidLoad Power-Up for Autoptimize <= 1.7.1 - Missing Authorization in 'attach_rule' | shakee93 | RapidLoad AI – Optimize Web Vitals Automatically | Medium | 4.3 | 2023-03-10 19:20:20 | Deep Dive |
| CVE-2023-1337 | RapidLoad Power-Up for Autoptimize <= 1.7.1 - Missing Authorization in 'clear_uucss_logs' | shakee93 | RapidLoad AI – Optimize Web Vitals Automatically | Medium | 4.3 | 2023-03-10 19:20:10 | Deep Dive |
| CVE-2023-1336 | RapidLoad Power-Up for Autoptimize <= 1.7.1 - Missing Authorization in 'ajax_deactivate' | shakee93 | RapidLoad AI – Optimize Web Vitals Automatically | Medium | 4.3 | 2023-03-10 19:19:57 | Deep Dive |
| CVE-2023-1339 | RapidLoad Power-Up for Autoptimize <= 1.7.1 - Missing Authorization in 'uucss_update_rule' | shakee93 | RapidLoad AI – Optimize Web Vitals Automatically | Medium | 4.3 | 2023-03-10 19:19:46 | Deep Dive |
| CVE-2023-1346 | RapidLoad Power-Up for Autoptimize <= 1.7.1 - Cross-Site Request Forgery via 'clear_page_cache' | shakee93 | RapidLoad AI – Optimize Web Vitals Automatically | Medium | 4.3 | 2023-03-10 19:07:40 | Deep Dive |
| CVE-2023-1345 | RapidLoad Power-Up for Autoptimize <= 1.7.1 - Cross-Site Request Forgery via 'queue_posts' | shakee93 | RapidLoad AI – Optimize Web Vitals Automatically | Medium | 4.3 | 2023-03-10 19:07:24 | Deep Dive |
| CVE-2023-1344 | RapidLoad Power-Up for Autoptimize <= 1.7.1 - Cross-Site Request Forgery via 'uucss_update_rule' | shakee93 | RapidLoad AI – Optimize Web Vitals Automatically | Medium | 4.3 | 2023-03-10 19:07:05 | Deep Dive |
| CVE-2023-1343 | RapidLoad Power-Up for Autoptimize <= 1.7.1 - Cross-Site Request Forgery via 'attach_rule' | shakee93 | RapidLoad AI – Optimize Web Vitals Automatically | Medium | 4.3 | 2023-03-10 19:06:47 | Deep Dive |
| CVE-2023-1342 | RapidLoad Power-Up for Autoptimize <= 1.7.1 - Cross-Site Request Forgery via 'ucss_connect' | shakee93 | RapidLoad AI – Optimize Web Vitals Automatically | Medium | 4.3 | 2023-03-10 19:06:30 | Deep Dive |
| CVE-2023-1341 | RapidLoad Power-Up for Autoptimize <= 1.7.1 - Cross-Site Request Forgery via 'ajax_deactivate' | shakee93 | RapidLoad AI – Optimize Web Vitals Automatically | Medium | 4.3 | 2023-03-10 19:05:50 | Deep Dive |
| CVE-2023-1340 | RapidLoad Power-Up for Autoptimize <= 1.7.1 - Cross-Site Request Forgery via 'clear_uucss_logs' | shakee93 | RapidLoad AI – Optimize Web Vitals Automatically | Medium | 4.3 | 2023-03-10 19:05:24 | Deep Dive |
| CVE-2023-1334 | RapidLoad Power-Up for Autoptimize <= 1.7.1 - Missing Authorization in 'queue_posts' | shakee93 | RapidLoad AI – Optimize Web Vitals Automatically | Medium | 4.3 | 2023-03-10 19:02:28 | Deep Dive |