Goal Reached Thanks to every supporter — we hit 100%!

Goal: 1000 CNY · Raised: 1000 CNY

100.0%
Buy Us a Coffee

imagerecycle — Vulnerabilities & Security Advisories 15

Browse all 15 CVE security advisories affecting imagerecycle. AI-powered Chinese analysis, POCs, and references for each vulnerability.

ImageRecycle is an image optimization service that helps websites reduce image file sizes to improve loading times. Historically, the platform has been associated with multiple security vulnerabilities, including cross-site scripting (XSS), remote code execution (RCE), and privilege escalation flaws. These vulnerabilities have allowed attackers to execute arbitrary code, steal session cookies, and gain unauthorized access to systems. The service has recorded 15 CVEs, with some instances involving insecure direct object references and improper input validation. While no major public security incidents have been widely documented, the consistent pattern of vulnerabilities suggests potential risks for organizations relying on the platform for image optimization.

Top products by imagerecycle: ImageRecycle pdf & image compression
CVE IDTitleCVSSSeverityPublished
CVE-2024-54266 WordPress ImageRecycle pdf & image compression plugin <= 3.1.16 - Reflected Cross Site Scripting (XSS) vulnerability — ImageRecycle pdf & image compressionCWE-79 7.1 High2024-12-13
CVE-2024-6631 ImageRecycle pdf & image compression <= 3.1.14 - Missing Authorization in Several AJAX Actions — ImageRecycle pdf & image compressionCWE-862 5.0 Medium2024-08-24
CVE-2024-8120 ImageRecycle pdf & image compression <= 3.1.14 - Cross-Site Request in Several AJAX Actions — ImageRecycle pdf & image compressionCWE-352 4.7 Medium2024-08-24
CVE-2024-1090 ImageRecycle pdf & image compression <= 3.1.13 - Missing Authorization to Settings Update in stopOptimizeAll — ImageRecycle pdf & image compressionCWE-862 4.3 Medium2024-02-20
CVE-2024-0984 ImageRecycle pdf & image compression <= 3.1.13 - Missing Authorization to Settings Update in disableOptimization — ImageRecycle pdf & image compressionCWE-862 4.3 Medium2024-02-20
CVE-2024-1336 ImageRecycle pdf & image compression <= 3.1.13 - Cross-Site Request Forgery to Settings Update in optimizeAllOn — ImageRecycle pdf & image compressionCWE-352 4.3 Medium2024-02-20
CVE-2024-1335 ImageRecycle pdf & image compression <= 3.1.13 - Cross-Site Request Forgery to Settings Update in disableOptimization — ImageRecycle pdf & image compressionCWE-352 4.3 Medium2024-02-20
CVE-2024-1089 ImageRecycle pdf & image compression <= 3.1.13 - Missing Authorization to Settings Update in optimizeAllOn — ImageRecycle pdf & image compressionCWE-862 4.3 Medium2024-02-20
CVE-2024-1338 ImageRecycle pdf & image compression <= 3.1.13 - Cross-Site Request Forgery to Settings Update in stopOptimizeAll — ImageRecycle pdf & image compressionCWE-352 4.3 Medium2024-02-20
CVE-2024-1091 ImageRecycle pdf & image compression <= 3.1.13 - Missing Authorization to Plugin Data Removal in reinitialize — ImageRecycle pdf & image compressionCWE-862 4.3 Medium2024-02-20
CVE-2024-1339 ImageRecycle pdf & image compression <= 3.1.13 - Cross-Site Request Forgery to Plugin Data Removal in reinitialize — ImageRecycle pdf & image compressionCWE-352 4.3 Medium2024-02-20
CVE-2024-0983 ImageRecycle pdf & image compression <= 3.1.13 - Missing Authorization to Settings Update in enableOptimization — ImageRecycle pdf & image compressionCWE-862 4.3 Medium2024-02-20
CVE-2024-1334 ImageRecycle pdf & image compression <= 3.1.13 - Cross-Site Request Forgery to Settings Update in enableOptimization — ImageRecycle pdf & image compressionCWE-352 4.3 Medium2024-02-20
CVE-2023-40196 WordPress ImageRecycle pdf & image compression Plugin <= 3.1.11 is vulnerable to Cross Site Scripting (XSS) — ImageRecycle pdf & image compressionCWE-79 7.1 High2023-09-04
CVE-2023-30494 WordPress ImageRecycle pdf & image compression Plugin <= 3.1.10 is vulnerable to Cross Site Scripting (XSS) — ImageRecycle pdf & image compressionCWE-79 7.1 High2023-09-04

This page lists every published CVE security advisory associated with imagerecycle. Each entry links to a detailed page with CVSS scoring, CWE classification, affected products and references. AI-generated Chinese analysis is provided for fast triage.