Lucene search
K

4 matches found

RedhatCVE
RedhatCVE
added 2025/05/23 3:2 a.m.5 views

CVE-2023-1920

The WP Fastest Cache plugin for WordPress is vulnerable to Cross-Site Request Forgery in versions up to, and including, 1.1.2. This is due to missing or incorrect nonce validation on the wpfcpurgecachevarnishcallback function. This makes it possible for unauthenticated attackers to purge the...

4.3CVSS5.2AI score0.00227EPSS
Exploits0References1
Cvelist
Cvelist
added 2023/04/06 7:55 p.m.17 views

CVE-2023-1920 WP Fastest Cache <= 1.1.2 - Cross-Site Request Forgery via 'wpfc_purgecache_varnish_callback'

The WP Fastest Cache plugin for WordPress is vulnerable to Cross-Site Request Forgery in versions up to, and including, 1.1.2. This is due to missing or incorrect nonce validation on the wpfcpurgecachevarnishcallback function. This makes it possible for unauthenticated attackers to purge the...

4.3CVSS4.5AI score0.00227EPSS
Exploits0References2
Vulnrichment
Vulnrichment
added 2023/04/06 7:55 p.m.9 views

CVE-2023-1920 WP Fastest Cache <= 1.1.2 - Cross-Site Request Forgery via 'wpfc_purgecache_varnish_callback'

The WP Fastest Cache plugin for WordPress is vulnerable to Cross-Site Request Forgery in versions up to, and including, 1.1.2. This is due to missing or incorrect nonce validation on the wpfcpurgecachevarnishcallback function. This makes it possible for unauthenticated attackers to purge the...

4.3CVSS6.6AI score0.00227EPSS
Exploits0References2
CVE
CVE
added 2023/04/06 7:55 p.m.42 views

CVE-2023-1920

The CVE-2023-1920 entry refers to the WP Fastest Cache WordPress plugin with CSRF vulnerability due to missing/incorrect nonce validation in the wpfc_purgecache_varnish_callback. Affected versions are up to and including 1.1.2. The underlying issue allows unauthenticated attackers to purge the va...

4.3CVSS4.5AI score0.00227EPSS
Exploits0References2Affected Software1
Rows per page
Query Builder