2 matches found
CVE-2023-1926
The CVE-2023-1926 issue affects the WordPress plugin WP Fastest Cache (versions up to 1.1.2). Root cause: missing or incorrect nonce validation in the function deleteCacheToolbar allows unauthenticated attackers to trigger cache deletion via forged requests if a site admin is lured into clicking ...
CVE-2023-1926 WP Fastest Cache <= 1.1.2 - Cross-Site Request Forgery via 'deleteCacheToolbar'
The WP Fastest Cache plugin for WordPress is vulnerable to Cross-Site Request Forgery in versions up to, and including, 1.1.2. This is due to missing or incorrect nonce validation on the deleteCacheToolbar function. This makes it possible for unauthenticated attackers to perform cache deletion vi...