← Back

Insights From Google Pagespeed Project

insights_from_google_pagespeed_project

2 CVEs • 1 product

Products (1)

Click to collapse
Toggle
Insights From Google Pagespeed
insights_from_google_pagespeed
2 CVEs

CVEs (2)

CVE
VENDORS
PRODUCTS
UPDATED
PUBLISHED
CVSS
CVE-2022-1672
1Insights From Google Pagespeed Project
1Insights From Google Pagespeed
Jun 17, 2026
Jul 17, 2022
N/A· v4
8.8 HIGH· v3
6.8 MEDIUM· v2
The Insights from Google PageSpeed WordPress plugin before 4.0.7 does not verify for CSRF before doing various actions such as deleting Custom URLs, which could allow attackers to make a logged in admin perform such acti...Show more
The Insights from Google PageSpeed WordPress plugin before 4.0.7 does not verify for CSRF before doing various actions such as deleting Custom URLs, which could allow attackers to make a logged in admin perform such actions via CSRF attacksShow less
CVE-2022-0431
1Insights From Google Pagespeed Project
1Insights From Google Pagespeed
Jun 17, 2026
Apr 4, 2022
N/A· v4
6.1 MEDIUM· v3
4.3 MEDIUM· v2
The Insights from Google PageSpeed WordPress plugin before 4.0.4 does not sanitise and escape various parameters before outputting them back in attributes in the plugin's settings dashboard, leading to Reflected Cross-Si...Show more
The Insights from Google PageSpeed WordPress plugin before 4.0.4 does not sanitise and escape various parameters before outputting them back in attributes in the plugin's settings dashboard, leading to Reflected Cross-Site ScriptingShow less