Vulnerabilities and security researches forimage-optimization image-optimization

Feb 27, 2026

CVE, Research URL: CVE-2026-25387
Home page URL: Security reports for Image Optimizer by Elementor – Compress, Resize and Optimize Images
Application: Image Optimizer by Elementor – Compress, Resize and Optimize Images
Date: Feb 19, 2026
Research Description: Missing Authorization vulnerability in Elementor Image Optimizer by Elementor image-optimization allows Exploiting Incorrectly Configured Access Control Security Levels.This issue affects Image Optimizer by Elementor: from n/a through <= 1.7.1.
Affected versions: max 1.7.2.
Status: vulnerable

Jun 25, 2026

PSC, Research URL: PSC-2026-64666
Home page URL: Security reports for Image Optimizer by Elementor – Compress, Resize and Optimize Images
Application: Image Optimizer by Elementor – Compress, Resize and Optimize Images
Date: Jun 25, 2026
Research Description: Image optimization plugins work directly with uploaded media, generated derivatives, file names, MIME types, and background processing jobs. That makes them useful for performance, but also security-sensitive because unsafe media handling can lead to path manipulation, unauthorized file access, broken public assets, or exposure of media metadata. Image Optimizer - Optimize Images and Convert to WebP or AVIF version 1.7.5 has successfully completed the CleanTalk Plugin Security Certification process and received PSC-2026-64666, confirming that the plugin was reviewed from a secure code perspective with attention to common exploitation paths for image optimization, format conversion, media processing, and upload pipeline behavior.
Affected versions: Min 1.7.5, max 1.7.5.
Status: SAFE & CERTIFIED