CVE-2024-1336 | ImageRecycle PDF & Image Compression Plugin up to 3.1.13 on WordPress Setting optimizeAllOn cross-site request forgery

Posted by Angelo Barbosa | Feb 8, 2024 | CVE

A vulnerability was found in ImageRecycle PDF & Image Compression Plugin up to 3.1.13 on WordPress. It has been declared as problematic. This vulnerability affects the function optimizeAllOn of the component Setting Handler. The manipulation leads to cross-site request forgery.

This vulnerability was named CVE-2024-1336. The attack can be initiated remotely. There is no exploit available.

CVE-2024-1336 | ImageRecycle PDF & Image Compression Plugin up to 3.1.13 on WordPress Setting optimizeAllOn cross-site request forgery

Related Posts

CVE-2024-29188 | WiX Toolset up to 3.14.0/4.0.4 on Windows Uninstallation RemoveFolderEx link following (GHSA-jx4p-m4wm-vvjg)

CVE-2023-51482 | EazyPlugins Eazy Plugin Manager up to 4.1.2 on WordPress ACL improper authentication

CVE-2023-28782 | Rocketgenius Gravity Forms Plugin up to 2.7.3 on WordPress deserialization

CVE-2023-49047 | Tenda AX1803 1.0.0.1 formSetDeviceName devName stack-based overflow