cleantalk
Vulnerabilities and Security Researches

ShortPixel Adaptive Images – WebP, AVIF, CDN, Image Optimization, CVE-2023-0334

CVE, Research URL

CVE-2023-0334

Home page URL

Security reports for ShortPixel Adaptive Images – WebP, AVIF, CDN, Image Optimization

Application

ShortPixel Adaptive Images – WebP, AVIF, CDN, Image Optimization

Published on
Feb 27, 2023
Research Description
The ShortPixel Adaptive Images WordPress plugin before 3.6.3 does not sanitise and escape a parameter before outputting it back in the page, leading to a Reflected Cross-Site Scripting which could be used against any high privilege users such as admin
Affected versions
Min -, max 3.6.3.
Status
vulnerable
Previous vulnerability researches
ShortPixel Adaptive Images – WebP, AVIF, CDN, Image Optimization (CVE-2025-30853) , Apr 03, 2025
ShortPixel Adaptive Images – WebP, AVIF, CDN, Image Optimization (CVE-2024-35172) , Jun 06, 2024
ShortPixel Adaptive Images – WebP, AVIF, CDN, Image Optimization (CVE-2022-29417) , Jun 06, 2024
ShortPixel Adaptive Images – WebP, AVIF, CDN, Image Optimization (CVE-2023-0334) , Jun 06, 2024
ShortPixel Adaptive Images – WebP, AVIF, CDN, Image Optimization (CVE-2023-32512) , Jun 06, 2024
New vulnerability
Tournament Bracket Generator (CVE-2025-6290) , Jun 29, 2025
VR Calendar (CVE-2025-5936) , Jun 29, 2025
Abandoned Contact Form 7 (CVE-2025-52817) , Jun 29, 2025
Simple Payment (CVE-2025-6688) , Jun 29, 2025
SiteGuard WP Plugin , Jun 28, 2025