| CVE ID | Title | Vendor | Product | Severity | CVSS Score | Published At | AI Analysis |
|---|---|---|---|---|---|---|---|
| CVE-2025-68861 | WordPress Plugin Optimizer plugin <= 1.3.7 - Broken Access Control vulnerability | pluginoptimizer | Plugin Optimizer | High | 7.1 | 2025-12-29 17:23:09 | Deep Dive |
| CVE-2025-12015 | Convert WebP & AVIF | Quicq | Best image optimizer and compression plugin | Improve your Google Pagespeed <= 2.0.0 - Missing Authorization to Authenticated (Subscriber+) Afosto Disconnect | sanderkah | Convert WebP & AVIF | Quicq | Best image optimizer and compression plugin | Improve your Google Pagespeed | Medium | 4.3 | 2025-11-13 08:27:46 | Deep Dive |
| CVE-2025-25163 | WordPress Plugin A/B Image Optimizer Plugin <= 3.3 - Arbitrary File Download vulnerability | Zach Swetz | Plugin A/B Image Optimizer | High | 7.5 | 2025-02-07 10:12:01 | Deep Dive |
| CVE-2024-12473 | AI Scribe – SEO AI Writer, Content Generator, Humanizer, Blog Writer, SEO Optimizer, DALLE-3, AI WordPress Plugin ChatGPT (GPT-4o 128K) <= 2.5 - Authenticated (Contributor+) SQL Injection | opacewebdesign | Opace AI Scribe: SEO Content Creator & Humaizer for OpenAI & Anthropic | Medium | 6.5 | 2025-01-10 03:21:30 | Deep Dive |
| CVE-2024-12606 | AI Scribe – SEO AI Writer, Content Generator, Humanizer, Blog Writer, SEO Optimizer, DALLE-3, AI WordPress Plugin ChatGPT (GPT-4o 128K) <= 2.5 - Missing Authorization to Authenticated (Subscriber+) Settings Update | opacewebdesign | Opace AI Scribe: SEO Content Creator & Humaizer for OpenAI & Anthropic | Medium | 4.3 | 2025-01-10 03:21:30 | Deep Dive |
| CVE-2024-12605 | AI Scribe – SEO AI Writer, Content Generator, Humanizer, Blog Writer, SEO Optimizer, DALLE-3, AI WordPress Plugin ChatGPT (GPT-4o 128K) <= 2.5 - Cross-Site Request Forgery to Settings Update | opacewebdesign | Opace AI Scribe: SEO Content Creator & Humaizer for OpenAI & Anthropic | Medium | 4.3 | 2025-01-09 11:10:58 | Deep Dive |
| CVE-2019-25217 | SiteGround Optimizer <= 5.0.12 - Missing Authorization | siteground | Speed Optimizer – The All-In-One Performance-Boosting Plugin | Critical | 9.8 | 2024-10-16 06:43:34 | Deep Dive |
| CVE-2022-2449 | reSmush.it Image Optimizer < 0.4.7 - Multiple CSRF | Unknown | reSmush.it : the only free Image Optimizer & compress plugin | 中危 | - | 2022-11-14 00:00:00 | Deep Dive |
| CVE-2022-2450 | reSmush.it Image Optimizer < 0.4.4 - Subscriber+ AJAX Calls | Unknown | reSmush.it : the only free Image Optimizer & compress plugin | 中危 | - | 2022-11-14 00:00:00 | Deep Dive |
| CVE-2022-26375 | WordPress AB Press Optimizer plugin <= 1.1.1 - Auth. Stored Cross-Site Scripting (XSS) vulnerability | Mammothology | AB Press Optimizer (WordPress plugin) | Medium | 4.8 | 2022-10-17 17:03:22 | Deep Dive |
| CVE-2022-2448 | reSmush.it Image Optimizer < 0.4.6 - Admin+ Cross-Site Scripting | Unknown | reSmush.it : the only free Image Optimizer & compress plugin | 中危 | - | 2022-10-10 00:00:00 | Deep Dive |
| CVE-2022-38454 | WordPress Kraken.io Image Optimizer plugin <= 2.6.5 - Cross-Site Request Forgery (CSRF) vulnerability | Karim Salman | Kraken.io Image Optimizer (WordPress plugin) | Medium | 5.4 | 2022-09-23 18:36:52 | Deep Dive |
| CVE-2022-0993 | SiteGround Security <= 1.2.5 - Authorization Weakness to Authentication Bypass | siteground | Security Optimizer – The All-In-One Protection Plugin | High | 8.1 | 2022-04-19 20:26:36 | Deep Dive |
| CVE-2022-0992 | SiteGround Security <= 1.2.5 - Authentication Bypass via 2FA Setup | siteground | Security Optimizer – The All-In-One Protection Plugin | Critical | 9.8 | 2022-04-19 20:26:33 | Deep Dive |