Lucene search
PatchstackCVELIST:CVE-2024-28000HistoryAug 21, 2024 - 1:53 p.m.
CVE-2024-28000 WordPress LiteSpeed Cache plugin <= 6.3.0.1 - Unauthenticated Privilege Escalation vulnerability
2024-08-2113:53:57
CWE-266
Patchstack
www.cve.org
23
wordpress
litespeed cache
privilege escalation
CVSS3
9.8
Attack Vector
NETWORK
Attack Complexity
LOW
Privileges Required
NONE
User Interaction
NONE
Scope
UNCHANGED
Confidentiality Impact
HIGH
Integrity Impact
HIGH
Availability Impact
HIGH
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
EPSS
0
Percentile
9.5%
Incorrect Privilege Assignment vulnerability in LiteSpeed Technologies LiteSpeed Cache litespeed-cache allows Privilege Escalation.This issue affects LiteSpeed Cache: from 1.9 through 6.3.0.1.
CNA Affected
[
{
"collectionURL": "https://wordpress.org/plugins",
"defaultStatus": "unaffected",
"packageName": "litespeed-cache",
"product": "LiteSpeed Cache",
"vendor": "LiteSpeed Technologies",
"versions": [
{
"changes": [
{
"at": "6.4",
"status": "unaffected"
}
],
"lessThanOrEqual": "6.3.0.1",
"status": "affected",
"version": "1.9",
"versionType": "custom"
}
]
}
]Related
nvd
nvd
CVE-2024-28000
2024-08-21 14:15:08
wordfence
wordfence
nessus
nessus
WordPress Plugin 'LiteSpeed Cache' < 6.4 Privilege Escalation
2024-08-23 00:00:00
githubexploit
githubexploit
Exploit for CVE-2024-28000
2024-08-27 07:20:44
Exploit for CVE-2024-28000
2024-09-09 06:19:54
Exploit for CVE-2024-28000
2024-08-25 16:57:24
openvas
openvas
WordPress LiteSpeed Cache <= 6.3.0.1 Privilege Escalation Vulnerability
2024-09-05 00:00:00
vulnrichment
vulnrichment
cve
cve
CVE-2024-28000
2024-08-21 14:15:08
thn
thn
Critical Security Flaw Found in LiteSpeed Cache Plugin for WordPress
2024-09-06 06:35:00
CVSS3
9.8
Attack Vector
NETWORK
Attack Complexity
LOW
Privileges Required
NONE
User Interaction
NONE
Scope
UNCHANGED
Confidentiality Impact
HIGH
Integrity Impact
HIGH
Availability Impact
HIGH
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
EPSS
0
Percentile
9.5%
Related for CVELIST:CVE-2024-28000