CVE-2016-20010

Name of the Vulnerable Software and Affected Versions EWWW Image Optimizer versions prior to 2.8.5

Description The issue is related to a flaw in the protection mechanism of the EWWW Image Optimizer plugin for WordPress, which can be exploited by a remote attacker to execute arbitrary code. This is because the plugin relies on a protection mechanism involving boolval, which is not available in PHP versions before 5.5.

Recommendations For versions prior to 2.8.5, update to version 2.8.5 or later to resolve the issue. As a temporary workaround, consider disabling the plugin until a patch is applied. Restrict access to the plugin's functionality to minimize the risk of exploitation.