cleantalk
Vulnerabilities and Security Researches

ShortPixel Image Optimizer – Optimize Images, Convert WebP & AVIF, CVE-2024-48043

CVE, Research URL

CVE-2024-48043

Home page URL

Security reports for ShortPixel Image Optimizer – Optimize Images, Convert WebP & AVIF

Application

ShortPixel Image Optimizer – Optimize Images, Convert WebP & AVIF

Published on
Oct 17, 2024
Research Description
Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection') vulnerability in ShortPixel ShortPixel Image Optimizer allows Blind SQL Injection.This issue affects ShortPixel Image Optimizer: from n/a through 5.6.3.
Affected versions
max 5.6.4.
Status
vulnerable
Previous vulnerability researches
ShortPixel Image Optimizer – Optimize Images, Convert WebP & AVIF (c6d0d7d00104f4d04df374d0a0b63506e6950cb3) , Jun 07, 2024
ShortPixel Image Optimizer – Optimize Images, Convert WebP & AVIF (CVE-2026-1246) , Apr 15, 2026
ShortPixel Image Optimizer – Optimize Images, Convert WebP & AVIF (CVE-2025-11378) , Dec 10, 2025
ShortPixel Image Optimizer – Optimize Images, Convert WebP & AVIF (CVE-2024-48043) , Oct 16, 2024
ShortPixel Image Optimizer – Optimize Images, Convert WebP & AVIF (CVE-2024-48044) , Oct 16, 2024
New vulnerability
Livemesh Addons for Beaver Builder (CVE-2026-2029) , Apr 15, 2026
LearnPress Export Import – WordPress extension for LearnPress (CVE-2026-1787) , Apr 15, 2026
Simple calendar for Elementor (CVE-2026-1310) , Apr 15, 2026
JS Help Desk – Best Help Desk & Support Plugin (CVE-2023-7337) , Apr 15, 2026
WP Duplicate – WordPress Migration Plugin (CVE-2026-1499) , Apr 15, 2026