wip

wp-content/plugins/webp-converter-for-media/changelog.txt

@@ -1,5 +1,9 @@
 == Changelog ==
 
+= 6.4.0 (2025-12-08) =
+* `[Security]` Added permission check to ensure the user can edit the post before manually converting an image in the Media Library (CVE-2025-13750)
+* `[Security]` Added stricter permission checks to REST API endpoints for authenticated users
+
 = 6.3.2 (2025-11-24) =
 * `[Added]` Support for WordPress 6.9
 
@@ -9,7 +13,6 @@
 
 = 6.3.0 (2025-10-28) =
 * `[Changed]` Message about rewrites_uploads_blocked server configuration error
-* `[Added]` Support for WordPress 6.9
 
 = 6.2.4 (2025-09-09) =
 * `[Fixed]` Deprecated notice for implicitly nullable parameter when converting images
@@ -417,7 +420,7 @@
 * `[Changed]` Message after successfully completing conversion of images
 
 = 4.0.3 (2021-12-20) =
-* `[Security]` Added URL validation for Pass Thru loading mode ([CVE-2021-25074](https://wpscan.com/vulnerability/f3c0a155-9563-4533-97d4-03b9bac83164/))
+* `[Security]` Added URL validation for Pass Thru loading mode (CVE-2021-25074)
 * `[Fixed]` Auto-conversion images with unsupported extensions when uploading files
 * `[Fixed]` Generating directory paths when ABSPATH constant is invalid
 
@@ -688,7 +691,7 @@
 * `[Changed]` Limits of maximum execution time
 
 = 1.0.3 (2019-06-26) =
-* `[Security]` Fixed CSRF vulnerability when saving plugin settings ([CVE-2019-15834](https://wpscan.com/vulnerability/65483794-f22f-41c7-b286-fd70c38ae160/))
+* `[Security]` Fixed CSRF vulnerability when saving plugin settings (CVE-2019-15834)
 
 = 1.0.2 (2019-06-25) =
 * `[Changed]` Error messages