Vulnerabilities > Rapidload > Rapidload Power UP FOR Autoptimize

DATE CVE VULNERABILITY TITLE RISK
2025-02-01 CVE-2024-13651 Missing Authorization vulnerability in Rapidload Power-Up for Autoptimize
The RapidLoad – Optimize Web Vitals Automatically plugin for WordPress is vulnerable to unauthorized modification of data due to a missing capability check on the ajax_deactivate() function in all versions up to, and including, 2.4.4.
network
low complexity
rapidload CWE-862
4.3
4.3
2023-06-22 CVE-2022-47593 Unspecified vulnerability in Rapidload Power-Up for Autoptimize
Auth.
network
low complexity
rapidload
6.5
6.5
2023-03-17 CVE-2023-1472 Cross-Site Request Forgery (CSRF) vulnerability in Rapidload Power-Up for Autoptimize
The RapidLoad Power-Up for Autoptimize plugin for WordPress is vulnerable to Cross-Site Request Forgery in versions up to, and including, 1.7.1.
network
low complexity
rapidload CWE-352
6.3
6.3