Browse all 6 CVE security advisories affecting optimole. AI-powered Chinese analysis, POCs, and references for each vulnerability.
Optimole provides website optimization services, focusing on image and video delivery to improve site performance. Historically, the platform has been associated with cross-site scripting (XSS) and remote code execution vulnerabilities, with six CVEs recorded to date. These issues often stem from improper input validation and insufficient access controls in its optimization features. While no major public security incidents have been widely documented, the consistent presence of XSS and RCE vulnerabilities in its history suggests potential risks for implementations lacking proper hardening or timely updates. Organizations deploying Optimole should prioritize applying security patches and implementing additional input sanitization measures to mitigate these recurring vulnerability classes.
| CVE ID | Title | CVSS | Severity | Published |
|---|---|---|---|---|
| CVE-2026-1843 | Super Page Cache <= 5.2.2 - Unauthenticated Stored Cross-Site Scripting via Activity Log — Super Page CacheCWE-79 | 7.2 | High | 2026-02-14 |
This page lists every published CVE security advisory associated with optimole. Each entry links to a detailed page with CVSS scoring, CWE classification, affected products and references. AI-generated Chinese analysis is provided for fast triage.