cleantalk
Vulnerabilities and Security Researches

WP Optimizer, CVE-2025-53314

CVE, Research URL

CVE-2025-53314

Home page URL

Security reports for WP Optimizer

Application

WP Optimizer

Published on
Jun 27, 2025
Research Description
Cross-Site Request Forgery (CSRF) vulnerability in sh1zen WP Optimizer allows SQL Injection. This issue affects WP Optimizer: from n/a through 2.3.6.
Affected versions
Min -, max 2.3.6.
Status
vulnerable
Previous vulnerability researches
Giveaway Boost (CVE-2024-49332) , Oct 20, 2024
Giveaways and Contests by PromoSimple (CVE-2025-23934) , Jan 18, 2025
WPExperts Square For GiveWP (CVE-2024-13713) , Feb 22, 2025
WPExperts Square For GiveWP (CVE-2024-47338) , Sep 30, 2024
Scratch & Win – Giveaways and Contests. Boost subscribers, traffic, repeat visits, referrals, sales and more (CVE-2024-11898) , Dec 06, 2024
New vulnerability
WPB Product Categories Slider for WooCommerce – Display Categories Slider on Any Page (CVE-2025-53281) , Jul 03, 2025
Tealium (CVE-2025-50018) , Jul 03, 2025
Migration, Backup, Staging – WPvivid (CVE-2025-5961) , Jul 03, 2025
Mollie Payments for WooCommerce (CVE-2025-39362) , Jul 03, 2025
User Roles and Capabilities (CVE-2025-49981) , Jul 03, 2025