Source: National Vulnerability Database

The reSmush.it : the only free Image Optimizer & compress plugin WordPress plugin before 0.4.4 lacks authorization in various AJAX actions, allowing any logged-in users, such as subscribers to call them.

https://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2022-2450

50 hits since 2022-11-15

PHP Vulns Source Ratio: 16% (8136 total, 663 propagated, 4068 filtered)