231 matches found
WordPress Plugin 'LiteSpeed Cache' < 5.7.0.1 Stored XSS
The WordPress application running on the remote host has a version of the 'LiteSpeed Cache' plugin that is prior to 5.7.0.1. It is, therefore, affected by a stored XSS vulnerability due to improper neutralization of input during web page generation. Note that Nessus has not tested for this issue...
WordPress Plugin 'LiteSpeed Cache' < 6.5.0.1. Unauthenticated Account Takeover
The WordPress application running on the remote host has a version of the 'LiteSpeed Cache' plugin that is prior to 6.5.0.1. It is, therefore, affected by an unauthenticated account takeover vulnerability. The plugin suffers from an unauthenticated account takeover vulnerability which allows any...
Exploit for Incorrect Privilege Assignment in Litespeedtech Litespeed_Cache
!Logohttps://repository-images.githubusercontent.com/85505334...
Exploit for Incorrect Privilege Assignment in Litespeedtech Litespeed_Cache
LiteSpeed Cache Privilege Escalation Exp CVE-2024-28000Sc...
Critical Security Flaw Found in LiteSpeed Cache Plugin for WordPress
Cybersecurity researchers have discovered yet another critical security flaw in the LiteSpeed Cache plugin for WordPress that could allow unauthenticated users to take control of arbitrary accounts. The vulnerability, tracked as CVE-2024-44000 CVSS score: 7.5, impacts versions before and includin...
Exploit for Insufficiently Protected Credentials in Litespeedtech Litespeed_Cache
Poc LiteSpeed Cache CVE-2024-44000 Exploit CVE-2024-44000 is a...
Exploit for Insufficiently Protected Credentials in Litespeedtech Litespeed_Cache
Poc LiteSpeed Cache CVE-2024-44000 Exploit CVE-2024-44000 is a...
WordPress LiteSpeed Cache Plugin < 6.5.0.1 Account Takeover Vulnerability
The WordPress plugin SPDX-FileCopyrightText: 2024 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only CPE = "cpe:/a:litespeedtech:litespeedcache"; if description...
WordPress LiteSpeed Cache plugin < 6.5.0.1 - Unauthenticated Account Takeover via Cookie Leak vulnerability
Unauthenticated Account Takeover via Cookie Leak vulnerability discovered by Rafie Muhammad Patchstack in WordPress Plugin LiteSpeed Cache versions 6.5.0.1...
WordPress LiteSpeed Cache Plugin < 6.5.0.1 is vulnerable to Broken Authentication
Software LiteSpeed Cache Type Plugin Vulnerable versions 6.5.0.1 Fixed in 6.5.0.1 OWASP Top 10 A7: Identification and Authentication Failures Classification Broken Authentication CVE CVE-2024-44000 Patch priority High CVSS severity High 9.8 Developer Hai Zheng / Lite Speed Cache PSID 8f939cc0b306...
WordPress LiteSpeed Cache Plugin <= 6.3.0.1 Privilege Escalation Vulnerability
The WordPress plugin SPDX-FileCopyrightText: 2024 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only CPE = "cpe:/a:litespeedtech:litespeedcache"; if description...
LiteSpeed Cache Plugin for WordPress < 6.4 Privilege Escalation
The WordPress LiteSpeed Cache Plugin installed on the remote host is affected by an unauthenticated Privilege Escalation. Note that the scanner has not tested for these issues but has instead relied only on the application's self-reported version number. No source data...
Exploit for Incorrect Privilege Assignment in Litespeedtech Litespeed_Cache
CVE-2024-28000 PoC This repository contains tools for exploit...
Exploit for Incorrect Privilege Assignment in Litespeedtech Litespeed_Cache
LiteSpeed Cache Privilege Escalation PoC - CVE-2024-28000...
Exploit for Incorrect Privilege Assignment in Litespeedtech Litespeed_Cache
LiteSpeed Cache Privilege Escalation PoC - CVE-2024-28000 Thi...
WordPress Plugin 'LiteSpeed Cache' < 6.4 Privilege Escalation
The WordPress application running on the remote host has a version of the 'LiteSpeed Cache' plugin that is prior to 6.4. It is, therefore, affected by a privilege escalation vulnerability. An unauthenticated remote attacker could elevate their privileges to that of an account with the administrat...
Critical Flaw in WordPress LiteSpeed Cache Plugin Allows Hackers Admin Access
Cybersecurity researchers have disclosed a critical security flaw in the LiteSpeed Cache plugin for WordPress that could permit unauthenticated users to gain administrator privileges. "The plugin suffers from an unauthenticated privilege escalation vulnerability which allows any unauthenticated...
CVE-2024-28000
Incorrect Privilege Assignment vulnerability in LiteSpeed Technologies LiteSpeed Cache litespeed-cache.This issue affects LiteSpeed Cache: from n/a through = 6.3.0.1...
Over 5,000,000 Site Owners Affected by Critical Privilege Escalation Vulnerability Patched in LiteSpeed Cache Plugin
📢 Did you know Wordfence runs a Bug Bounty Program for all WordPress plugin and themes at no cost to vendors? Through October 14th, researchers can earn up to $31,200, for all in-scope vulnerabilities submitted to our Bug Bounty Program! Find a vulnerability, submit the details directly to us, an...
CVE-2024-28000 WordPress LiteSpeed Cache plugin <= 6.3.0.1 - Unauthenticated Privilege Escalation vulnerability
Incorrect Privilege Assignment vulnerability in LiteSpeed Technologies LiteSpeed Cache litespeed-cache.This issue affects LiteSpeed Cache: from n/a through = 6.3.0.1...