🔐 CVE Alert

CVE-2023-40600

UNKNOWN 0.0

WordPress EWWW Image Optimizer Plugin <= 7.2.0 is vulnerable to Sensitive Data Exposure

CVSS Score
0.0
EPSS Score
0.0%
EPSS Percentile
0th

Exposure of Sensitive Information to an Unauthorized Actor vulnerability in Exactly WWW EWWW Image Optimizer. It works only when debug.log is turned on.This issue affects EWWW Image Optimizer: from n/a through 7.2.0.

CWE CWE-200
Vendor exactly www
Product ewww image optimizer
Published Nov 30, 2023
Last Updated Apr 28, 2026
Stay Ahead of the Next One

Get instant alerts for exactly www ewww image optimizer

Be the first to know when new unknown vulnerabilities affecting exactly www ewww image optimizer are published — delivered to Slack, Telegram or Discord.

Get Free Alerts → Free · No credit card · 60 sec setup

Affected Versions

Exactly WWW / EWWW Image Optimizer
n/a ≤ 7.2.0

References

NVD ↗ CVE.org ↗ EPSS Data ↗
patchstack.com: https://patchstack.com/database/vulnerability/ewww-image-optimizer/wordpress-ewww-image-optimizer-plugin-7-2-0-sensitive-data-exposure-vulnerability?_s_id=cve

Credits

Mika (Patchstack Alliance)