cleantalk
Vulnerabilities and Security Researches

QuickWebP – Compress / Optimize Images & Convert WebP | SEO Friendly, CVE-2026-42756

CVE, Research URL

CVE-2026-42756

Home page URL

Security reports for QuickWebP – Compress / Optimize Images & Convert WebP | SEO Friendly

Application

QuickWebP – Compress / Optimize Images & Convert WebP | SEO Friendly

Published on
May 27, 2026
Research Description
Improper Limitation of a Pathname to a Restricted Directory ('Path Traversal') vulnerability in Ludwig You QuickWebP &#8211; Compress / Optimize Images &amp; Convert WebP | SEO Friendly quickwebp allows Path Traversal.This issue affects QuickWebP &#8211; Compress / Optimize Images &amp; Convert WebP | SEO Friendly: from n/a through <= 3.2.7.
Affected versions
max 3.2.7.
Status
vulnerable
Previous vulnerability researches
WS Force Login Page (CVE-2025-46521) , Apr 26, 2025
New vulnerability
Breeze &#8211; WordPress Cache Plugin (CVE-2026-2128) , May 30, 2026
Frontend Admin by DynamiApps (CVE-2026-6226) , May 30, 2026
Frontend Admin by DynamiApps (CVE-2026-7802) , May 30, 2026
EventPress (CVE-2026-6268) , May 30, 2026
WPComplete (CVE-2026-42750) , May 30, 2026