Vulnerabilities and security researches forrvg-optimize-database rvg-optimize-database

Jun 07, 2024

CVE, Research URL: CVE-2023-25980
Home page URL: Security reports for Optimize Database after Deleting Revisions
Application: Optimize Database after Deleting Revisions
Date: Oct 04, 2023
Research Description: Cross-Site Request Forgery (CSRF) vulnerability in CAGE Web Design | Rolf van Gelder Optimize Database after Deleting Revisions plugin <= 5.1 versions.
Affected versions: max 5.1.1.
Status: vulnerable

Jun 16, 2026

CVE, Research URL: 92d468427b69ac681adbda78f329ecf276206f86
Home page URL: Security reports for Optimize Database after Deleting Revisions
Application: Optimize Database after Deleting Revisions
Date: Oct 04, 2023
Research Description: Optimize Database after Deleting Revisions [rvg-optimize-database] < 5.1 WordPress Optimize Database after Deleting Revisions Plugin <= 5.0.110 is vulnerable to Broken Access Control Update the WordPress Optimize Database after Deleting Revisions plugin to the latest available version (at least 5.1). WordFence discovered and reported this Broken Access Control vulnerability in WordPress Optimize Database after Deleting Revisions Plugin. A broken access control issue refers to a missing authorization, authentication or nonce token check in a function that could lead to an unprivileged user to executing a certain higher privileged action. This vulnerability has been fixed in version 5.1.
Affected versions: max 5.1.
Status: vulnerable

CVE, Research URL: b94897e01439614ec1c63cce644049b3078dbc2a
Home page URL: Security reports for Optimize Database after Deleting Revisions
Application: Optimize Database after Deleting Revisions
Date: Oct 03, 2023
Research Description: Optimize Database after Deleting Revisions [rvg-optimize-database] < 5.1 Optimize Database after Deleting Revisions <= 5.0.110 - Missing Authorization via 'odb_csv_download' The Optimize Database after Deleting Revisions plugin for WordPress is vulnerable to information disclosure in versions up to, and including, 5.0.110. This is due to a missing capability check on the 'odb_csv_download' function which is hooked via admin_init. This makes it possible for unauthenticated attackers to trigger a download of the plugin's data.
Affected versions: max 5.1.
Status: vulnerable

CVE, Research URL: 1bf13d2a-9492-4f90-9ece-e5da5b132476
Home page URL: Security reports for Optimize Database after Deleting Revisions
Application: Optimize Database after Deleting Revisions
Date: -
Research Description: Optimize Database after Deleting Revisions [rvg-optimize-database] < 5.1 Optimize Database after Deleting Revisions < 5.1 - Missing Authorization via 'odb_csv_download' The Optimize Database after Deleting Revisions plugin for WordPress is vulnerable to information disclosure in versions up to, and including, 5.0.110. This is due to a missing capability check on the 'odb_csv_download' function which is hooked via admin_init. This makes it possible for unauthenticated attackers to trigger a download of the plugin's data.
Affected versions: max 5.1.
Status: vulnerable