Vulnerabilities (CVE)

Filtered by vendor Webp Converter For Media Project Subscribe
Total 2 CVE
CVE Vendors Products Updated CVSS v2 CVSS v3
CVE-2021-25074 1 Webp Converter For Media Project 1 Webp Converter For Media 2024-02-04 5.8 MEDIUM 6.1 MEDIUM
The WebP Converter for Media WordPress plugin before 4.0.3 contains a file (passthru.php) which does not validate the src parameter before redirecting the user to it, leading to an Open Redirect issue
CVE-2019-15834 1 Webp Converter For Media Project 1 Webp Converter For Media 2024-02-04 6.8 MEDIUM 8.8 HIGH
The webp-converter-for-media plugin before 1.0.3 for WordPress has CSRF.