Wpmudev Smush Image Compression And Optimization — known CVE vulnerabilities
Every CVE whose affected-product data names Wpmudev Smush Image Compression And Optimization, ordered by CVSS severity, with EPSS exploit prediction and CISA KEV status.
CVEs (2)
CVE-2017-15079 — CVSS 7.5 (high): The Smush Image Compression and Optimization plugin before 2.7.6 for WordPress allows directory traversal.
CVE-2022-1009 — CVSS 6.1 (medium): The Smush WordPress plugin before 3.9.9 does not sanitise and escape a configuration parameter before outputting it back in an admin page…