CVE-2022-4057

Name of the Vulnerable Software and Affected Versions Autoptimize WordPress plugin versions prior to 3.1.0

Description The issue is related to errors in security mechanisms, allowing a remote attacker to gain unauthorized access to information. The Autoptimize WordPress plugin uses an easily guessable path to store the plugin's exported settings and logs.

Recommendations For versions prior to 3.1.0, update to version 3.1.0 or later to resolve the issue. As a temporary workaround, consider restricting access to the exported settings and logs to minimize the risk of exploitation.