Shortpixel Adaptive Images
Approved changes feed: RSS · Atom
cpe:2.3:a:shortpixel:shortpixel_adaptive_images:*:*:*:*:*:wordpress:*:*
part: a version: * update: *
| Vendor | Shortpixel (0b5f855a-971d-5a8c-9e7a-25a449664847) |
|---|---|
| Product | Shortpixel Adaptive Images (3464f3c8-efbb-5eae-b6d7-cefe070be5b0) |
| Edition | * |
| Language | * |
| Software edition | * |
| Target software | wordpress |
| Target hardware | * |
| Other | * |
| Notes | Imported from gcve-enriched-dumps CVE data |
PURL mappings
| PURL | Source | Last updated |
|---|---|---|
| No PURL mappings for this CPE yet. | ||
Vulnerability references
| Identifier | cpeApplicability | Submitted | db.gcve.eu details | Rationale |
|---|---|---|---|---|
CVE:CVE-2023-32512 |
vulnerable | 2026-06-08 06:04:46.446753 |
WordPress ShortPixel Adaptive Images Plugin <= 3.7.1 is vulnerable to Cross Site Request Forgery (CSRF)
MEDIUM (4.3)
Cross-Site Request Forgery (CSRF) vulnerability in ShortPixel ShortPixel Adaptive Images – WebP, AVIF, CDN, Image Optimization plugin <= 3.7.1 versions.
Published: 2023-11-09T21:21:46.422Z
Updated: 2026-04-28T16:08:23.129Z |
Imported from gcve-enriched-dumps CVE data |
CVE:CVE-2023-0334 |
vulnerable | 2026-06-08 05:52:04.770600 |
ShortPixel Adaptive Images < 3.6.3 - Reflected XSS
The ShortPixel Adaptive Images WordPress plugin before 3.6.3 does not sanitise and escape a parameter before outputting it back in the page, leading to a Reflected Cross-Site Scripting which could be used against any high privilege users such as admin
Published: 2023-02-27T15:24:25.925Z
Updated: 2025-03-10T18:06:31.947Z |
Imported from gcve-enriched-dumps CVE data |
CVE:CVE-2022-29417 |
vulnerable | 2026-06-08 05:42:47.694756 |
WordPress ShortPixel Adaptive Images plugin <= 3.3.1 - Subscriber+ Plugin Settings Update vulnerability
MEDIUM (4.3)
Plugin Settings Update vulnerability in ShortPixel's ShortPixel Adaptive Images plugin <= 3.3.1 at WordPress allows an attacker with a low user role like a subscriber or higher to change the plugin settings.
Published: 2022-04-25T16:42:13.328Z
Updated: 2026-04-28T16:07:40.772Z |
Imported from gcve-enriched-dumps CVE data |
Contribute
You can submit an edit proposal for this CPE entry or suggest a related product/vendor addition using the action button above.