10web Image Optimizer
Don't miss out!
Thousands of developers use stack.watch to stay informed.Get an email whenever new security vulnerabilities are reported in 10web Image Optimizer.
By the Year
In 2026 there have been 0 vulnerabilities in 10web Image Optimizer. Image Optimizer did not have any published security vulnerabilities last year.
| Year | Vulnerabilities | Average Score |
|---|---|---|
| 2026 | 0 | 0.00 |
| 2025 | 0 | 0.00 |
| 2024 | 0 | 0.00 |
| 2023 | 2 | 4.40 |
It may take a day or so for new Image Optimizer vulnerabilities to show up in the stats or in the list of recent security vulnerabilities. Additionally vulnerabilities may be tagged under a different product or component name.
Recent 10web Image Optimizer Security Vulnerabilities
Reflected XSS in Image Optimizer WP Plugin by 10web <1.0.27
CVE-2023-2122
6.1 - Medium
- August 16, 2023
The Image Optimizer by 10web WordPress plugin before 1.0.27 does not sanitise and escape the iowd_tabs_active parameter before rendering it in the plugin admin panel, leading to a reflected Cross-Site Scripting vulnerability, allowing an attacker to trick a logged in admin to execute arbitrary javascript by clicking a link.
XSS
Image Optimizer 10web WP <1.0.27: unsanitized dir param allows file disclosure
CVE-2023-2117
2.7 - Low
- May 30, 2023
The Image Optimizer by 10web WordPress plugin before 1.0.27 does not sanitize the dir parameter when handling the get_subdirs ajax action, allowing a high privileged users such as admins to inspect names of files and directories outside of the sites root.
Directory traversal
Stay on top of Security Vulnerabilities
Want an email whenever new vulnerabilities are published for 10web Image Optimizer or by 10web? Click the Watch button to subscribe.
