cleantalk
Vulnerabilities and Security Researches

WP Compress – Image Optimizer [All-In-One], CVE-2024-47384

CVE, Research URL

CVE-2024-47384

Home page URL

Security reports for WP Compress – Image Optimizer [All-In-One]

Application

WP Compress – Image Optimizer [All-In-One]

Published on
Oct 05, 2024
Research Description
Improper Neutralization of Input During Web Page Generation (XSS or 'Cross-site Scripting') vulnerability in WP Compress WP Compress – Image Optimizer [All-In-One] allows Reflected XSS.This issue affects WP Compress – Image Optimizer [All-In-One]: from n/a through 6.20.13.
Affected versions
Min -, max 6.21.01.
Status
vulnerable
Previous vulnerability researches
WP Compress – Image Optimizer [All-In-One] (CVE-2024-47384) , Oct 03, 2024
WP Compress – Image Optimizer [All-In-One] (CVE-2024-12047) , Jan 05, 2025
WP Compress – Image Optimizer [All-In-One] (CVE-2025-47546) , May 09, 2025
WP Compress – Image Optimizer [All-In-One] (CVE-2025-2110) , Mar 27, 2025
WP Compress – Image Optimizer [All-In-One] (CVE-2025-2109) , Mar 26, 2025
New vulnerability
Jeg Elementor Kit (CVE-2025-2944) , May 10, 2025
1 Click WordPress Migration Plugin – 100% FREE for a limited time (CVE-2025-3455) , May 10, 2025
EUCookieLaw (CVE-2025-3897) , May 10, 2025
Frontend Login and Registration Blocks (CVE-2025-3605) , May 10, 2025
WordPress CRM, Email & Marketing Automation for WordPress | Award Winner — Groundhogg (CVE-2025-4206) , May 10, 2025