๐Ÿ” CVE Alert

CVE-2025-68893

UNKNOWN 0.0

WordPress WordPress Image shrinker plugin <= 1.1.0 - Server Side Request Forgery (SSRF) vulnerability

CVSS Score
0.0
EPSS Score
0.0%
EPSS Percentile
11th

Server-Side Request Forgery (SSRF) vulnerability in HETWORKS WordPress Image shrinker wp-image-shrinker allows Server Side Request Forgery.This issue affects WordPress Image shrinker: from n/a through <= 1.1.0.

CWE CWE-918
Vendor hetworks
Product wordpress image shrinker
Published Dec 29, 2025
Last Updated Apr 1, 2026
Stay Ahead of the Next One

Get instant alerts for hetworks wordpress image shrinker

Be the first to know when new unknown vulnerabilities affecting hetworks wordpress image shrinker are published โ€” delivered to Slack, Telegram or Discord.

Get Free Alerts โ†’ Free ยท No credit card ยท 60 sec setup

Affected Versions

HETWORKS / WordPress Image shrinker
0 โ‰ค 1.1.0

References

NVD โ†— CVE.org โ†— EPSS Data โ†—
patchstack.com: https://patchstack.com/database/Wordpress/Plugin/wp-image-shrinker/vulnerability/wordpress-wordpress-image-shrinker-plugin-1-1-0-server-side-request-forgery-ssrf-vulnerability?_s_id=cve

Credits

theviper17 | Patchstack Bug Bounty Program