WPMU DEV Smush Image Compression and Optimization Path Traversal Vulnerability

Vulnerability

A path traversal vulnerability has been identified in the WPMU DEV Smush Image Compression and Optimization WordPress plugin, affecting versions through 3.17.0. This vulnerability allows attackers to manipulate file paths and potentially access restricted files on the server.

Impact

Exploitation of this vulnerability could lead to unauthorized access to files on the server, potentially allowing for further attacks or information disclosure.

Added: Nov 6, 2025, 6:07 PM

Updated: Nov 6, 2025, 9:39 PM

Vulnerability Rating

Custom Algorithm

spread

7.6

impact

0.8

exploitability

7.6

remediation

0.0

relevance

1.0

threat

0.0

urgency

2.9

incentive

5.8

Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.

Vulnerability Rating

Custom Algorithm

spread

7.6

impact

0.8

exploitability

7.6

remediation

0.0

relevance

1.0

threat

0.0

urgency

2.9

incentive

5.8

Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.

WPMU DEV Smush Image Compression and Optimization Path Traversal Vulnerability

Vulnerability

Impact

Affected Products

WPMU DEV Smush Image Compression and Optimization

CVSS Scores

References

Vulnerability Rating

Vulnerability Rating