Lucene search
K

231 matches found

Tenable Nessus
Tenable Nessus
added 2024/09/11 12:0 a.m.23 views

WordPress Plugin 'LiteSpeed Cache' < 5.7.0.1 Stored XSS

The WordPress application running on the remote host has a version of the 'LiteSpeed Cache' plugin that is prior to 5.7.0.1. It is, therefore, affected by a stored XSS vulnerability due to improper neutralization of input during web page generation. Note that Nessus has not tested for this issue...

8.3CVSS8.6AI score0.54872EPSS
Exploits5References3
Tenable Nessus
Tenable Nessus
added 2024/09/11 12:0 a.m.43 views

WordPress Plugin 'LiteSpeed Cache' < 6.5.0.1. Unauthenticated Account Takeover

The WordPress application running on the remote host has a version of the 'LiteSpeed Cache' plugin that is prior to 6.5.0.1. It is, therefore, affected by an unauthenticated account takeover vulnerability. The plugin suffers from an unauthenticated account takeover vulnerability which allows any...

9.8CVSS8.7AI score0.83178EPSS
Exploits7References4
GithubExploit
GithubExploit
added 2024/09/10 8:16 a.m.247 views

Exploit for Incorrect Privilege Assignment in Litespeedtech Litespeed_Cache

!Logohttps://repository-images.githubusercontent.com/85505334...

9.8CVSS9.7AI score0.68266EPSS
Exploits8
GithubExploit
GithubExploit
added 2024/09/09 6:19 a.m.476 views

Exploit for Incorrect Privilege Assignment in Litespeedtech Litespeed_Cache

LiteSpeed Cache Privilege Escalation Exp CVE-2024-28000Sc...

9.8CVSS5.9AI score0.68266EPSS
Exploits8
The Hacker News
The Hacker News
added 2024/09/06 6:35 a.m.40 views

Critical Security Flaw Found in LiteSpeed Cache Plugin for WordPress

Cybersecurity researchers have discovered yet another critical security flaw in the LiteSpeed Cache plugin for WordPress that could allow unauthenticated users to take control of arbitrary accounts. The vulnerability, tracked as CVE-2024-44000 CVSS score: 7.5, impacts versions before and includin...

9.8CVSS7.7AI score0.83178EPSS
Exploits15
GithubExploit
GithubExploit
added 2024/09/06 3:38 a.m.399 views

Exploit for Insufficiently Protected Credentials in Litespeedtech Litespeed_Cache

Poc LiteSpeed Cache CVE-2024-44000 Exploit CVE-2024-44000 is a...

9.8CVSS10AI score0.83178EPSS
Exploits7
GithubExploit
GithubExploit
added 2024/09/06 3:38 a.m.649 views

Exploit for Insufficiently Protected Credentials in Litespeedtech Litespeed_Cache

Poc LiteSpeed Cache CVE-2024-44000 Exploit CVE-2024-44000 is a...

9.8CVSS10AI score0.83178EPSS
Exploits7
OpenVAS
OpenVAS
added 2024/09/06 12:0 a.m.59 views

WordPress LiteSpeed Cache Plugin < 6.5.0.1 Account Takeover Vulnerability

The WordPress plugin SPDX-FileCopyrightText: 2024 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only CPE = "cpe:/a:litespeedtech:litespeedcache"; if description...

9.8CVSS8.9AI score0.83178EPSS
Exploits7References2
Patchstack
Patchstack
added 2024/09/05 12:7 a.m.8 views

WordPress LiteSpeed Cache plugin < 6.5.0.1 - Unauthenticated Account Takeover via Cookie Leak vulnerability

Unauthenticated Account Takeover via Cookie Leak vulnerability discovered by Rafie Muhammad Patchstack in WordPress Plugin LiteSpeed Cache versions 6.5.0.1...

9.8CVSS7AI score0.83178EPSS
Exploits7References1Affected Software1
Patchstack
Patchstack
added 2024/09/05 12:0 a.m.26 views

WordPress LiteSpeed Cache Plugin < 6.5.0.1 is vulnerable to Broken Authentication

Software LiteSpeed Cache Type Plugin Vulnerable versions 6.5.0.1 Fixed in 6.5.0.1 OWASP Top 10 A7: Identification and Authentication Failures Classification Broken Authentication CVE CVE-2024-44000 Patch priority High CVSS severity High 9.8 Developer Hai Zheng / Lite Speed Cache PSID 8f939cc0b306...

9.8CVSS7.5AI score0.83178EPSS
Exploits7References3Affected Software1
OpenVAS
OpenVAS
added 2024/09/05 12:0 a.m.33 views

WordPress LiteSpeed Cache Plugin <= 6.3.0.1 Privilege Escalation Vulnerability

The WordPress plugin SPDX-FileCopyrightText: 2024 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only CPE = "cpe:/a:litespeedtech:litespeedcache"; if description...

9.8CVSS9.8AI score0.68266EPSS
Exploits8References1
Tenable Nessus
Tenable Nessus
added 2024/09/03 12:0 a.m.15 views

LiteSpeed Cache Plugin for WordPress < 6.4 Privilege Escalation

The WordPress LiteSpeed Cache Plugin installed on the remote host is affected by an unauthenticated Privilege Escalation. Note that the scanner has not tested for these issues but has instead relied only on the application's self-reported version number. No source data...

9.8CVSS7.6AI score0.68266EPSS
Exploits8References3
GithubExploit
GithubExploit
added 2024/08/27 7:20 a.m.570 views

Exploit for Incorrect Privilege Assignment in Litespeedtech Litespeed_Cache

CVE-2024-28000 PoC This repository contains tools for exploit...

9.8CVSS9.9AI score0.68266EPSS
Exploits8
GithubExploit
GithubExploit
added 2024/08/25 4:57 p.m.301 views

Exploit for Incorrect Privilege Assignment in Litespeedtech Litespeed_Cache

LiteSpeed Cache Privilege Escalation PoC - CVE-2024-28000...

9.8CVSS9.8AI score0.68266EPSS
Exploits8
GithubExploit
GithubExploit
added 2024/08/24 5:12 a.m.866 views

Exploit for Incorrect Privilege Assignment in Litespeedtech Litespeed_Cache

LiteSpeed Cache Privilege Escalation PoC - CVE-2024-28000 Thi...

9.8CVSS7.3AI score0.68266EPSS
Exploits8
Tenable Nessus
Tenable Nessus
added 2024/08/23 12:0 a.m.36 views

WordPress Plugin 'LiteSpeed Cache' < 6.4 Privilege Escalation

The WordPress application running on the remote host has a version of the 'LiteSpeed Cache' plugin that is prior to 6.4. It is, therefore, affected by a privilege escalation vulnerability. An unauthenticated remote attacker could elevate their privileges to that of an account with the administrat...

9.8CVSS6.1AI score0.68266EPSS
Exploits8References4
The Hacker News
The Hacker News
added 2024/08/22 5:2 a.m.62 views

Critical Flaw in WordPress LiteSpeed Cache Plugin Allows Hackers Admin Access

Cybersecurity researchers have disclosed a critical security flaw in the LiteSpeed Cache plugin for WordPress that could permit unauthenticated users to gain administrator privileges. "The plugin suffers from an unauthenticated privilege escalation vulnerability which allows any unauthenticated...

9.8CVSS7.6AI score0.68266EPSS
Exploits13
NVD
NVD
added 2024/08/21 2:15 p.m.42 views

CVE-2024-28000

Incorrect Privilege Assignment vulnerability in LiteSpeed Technologies LiteSpeed Cache litespeed-cache.This issue affects LiteSpeed Cache: from n/a through = 6.3.0.1...

9.8CVSS0.68266EPSS
Exploits8References4
Wordfence Blog
Wordfence Blog
added 2024/08/21 2:11 p.m.37 views

Over 5,000,000 Site Owners Affected by Critical Privilege Escalation Vulnerability Patched in LiteSpeed Cache Plugin

📢 Did you know Wordfence runs a Bug Bounty Program for all WordPress plugin and themes at no cost to vendors? Through October 14th, researchers can earn up to $31,200, for all in-scope vulnerabilities submitted to our Bug Bounty Program! Find a vulnerability, submit the details directly to us, an...

9.8CVSS6.5AI score0.68266EPSS
Exploits8
Vulnrichment
Vulnrichment
added 2024/08/21 1:53 p.m.92 views

CVE-2024-28000 WordPress LiteSpeed Cache plugin <= 6.3.0.1 - Unauthenticated Privilege Escalation vulnerability

Incorrect Privilege Assignment vulnerability in LiteSpeed Technologies LiteSpeed Cache litespeed-cache.This issue affects LiteSpeed Cache: from n/a through = 6.3.0.1...

9.8CVSS5.7AI score0.68266EPSS
Exploits8References1
Rows per page
Query Builder