Imagestowebp Project Images To Webp — known CVE vulnerabilities
Every CVE whose affected-product data names Imagestowebp Project Images To Webp, ordered by CVSS severity, with EPSS exploit prediction and CISA KEV status.
CVEs (2)
CVE-2021-24641 — CVSS 8.1 (high): The Images to WebP WordPress plugin before 1.9 does not have CSRF checks in place when performing some administrative actions, which could…
CVE-2021-24644 — CVSS 7.5 (high): The Images to WebP WordPress plugin before 1.9 does not validate or sanitise the tab parameter before passing it to the include() function…