Known Vulnerabilities for products from Shortpixel
Listed below are 8 of the newest known vulnerabilities associated with the vendor "Shortpixel".
These CVEs are retrieved based on exact matches on listed vendor information (CPE data) as well as a keyword search to ensure the newest vulnerabilities with no officially listed vendor information are still displayed.
Data on known vulnerable products is also displayed based on information from known CPEs, each product links to its respective vulnerability page.
Known Vulnerabilities
| CVE | Shortened Description | Severity | Publish Date | Last Modified |
|---|---|---|---|---|
| CVE-2026-4335 json | Not Provided | 2026-03-26 | 2026-03-26 | |
| CVE-2025-31081 json | Not Provided | 2025-04-01 | 2026-04-01 | |
| CVE-2025-30853 json | Not Provided | 2025-04-01 | 2026-04-01 | |
| CVE-2024-48044 json | Missing Authorization vulnerability in ShortPixel ShortPixel Image Optimizer shortpixel-image-optimiser allows Exploiting Inc... | Not Provided | 2024-11-01 | 2026-04-01 |
| CVE-2024-48043 json | Not Provided | 2024-10-17 | 2026-04-01 | |
| CVE-2024-35172 json | Not Provided | 2024-05-14 | 2026-04-01 | |
| CVE-2024-31230 json | Not Provided | 2024-04-10 | 2026-04-01 | |
| CVE-2024-4689 json | Not Provided | 2024-05-14 | 2026-04-01 | |
| CVE-2023-32512 json | ** RESERVED ** This candidate has been reserved by an organization or individual that will use it when announcing a new secur... | 8.8 - HIGH | 2023-11-09 | 2023-11-15 |
| CVE-2023-6737 json | The Enable Media Replace plugin for WordPress is vulnerable to Reflected Cross-Site Scripting via the SHORTPIXEL_DEBUG parame... | Not Provided | 2024-01-11 | 2026-04-08 |
| CVE-2023-4643 json | The Enable Media Replace WordPress plugin before 4.1.3 unserializes user input via the Remove Background feature, which could... | 8.8 - HIGH | 2023-10-16 | 2023-11-07 |
| CVE-2023-0334 json | The ShortPixel Adaptive Images WordPress plugin before 3.6.3 does not sanitise and escape a parameter before outputting it ba... | 6.1 - MEDIUM | 2023-02-27 | 2023-11-07 |
| CVE-2023-0255 json | The Enable Media Replace WordPress plugin before 4.0.2 does not prevent authors from uploading arbitrary files to the site, w... | 8.8 - HIGH | 2023-02-13 | 2023-11-07 |
| CVE-2022-29417 json | Plugin Settings Update vulnerability in ShortPixel's ShortPixel Adaptive Images plugin <= 3.3.1 at WordPress allows an attack... | 4.3 - MEDIUM | 2022-04-25 | 2023-07-20 |
| CVE-2022-2554 json | The Enable Media Replace WordPress plugin before 4.0.0 does not ensure that renamed files are moved to the Upload folder, whi... | 4.9 - MEDIUM | 2022-10-10 | 2022-10-11 |