Lucene search
K

231 matches found

Packet Storm
Packet Storm
added 2025/03/31 12:0 a.m.344 views

Litespeed Cache 6.5.0.1 Authentication Bypass

Litespeed Cache version 6.5.0.1 suffers from an authentication bypass vulnerability. Exploit Title: Litespeed unauthorized account takeover Google Dork: if applicable Date: reported on 17 September 2024 Exploit Author: Gnzls Vendor Homepage: https://www.litespeedtech.com/ Software Link:...

9.8CVSS7.5AI score0.83178EPSS
Exploits7
Exploit DB
Exploit DB
added 2025/03/28 12:0 a.m.220 views

Litespeed Cache 6.5.0.1 - Authentication Bypass

Exploit Title: Litespeed Cache 6.5.0.1 - Authentication Bypass Google Dork: if applicable Date: reported on 17 September 2024 Exploit Author: Gnzls Vendor Homepage: https://www.litespeedtech.com/ Software Link: https://github.com/gbrsh/CVE-2024-44000?tab=readme-ov-file Version: 6.5.0.1 Tested on:...

9.8CVSS9.8AI score0.83178EPSS
Exploits7
VulnCheck KEV
VulnCheck KEV
added 2025/03/19 12:0 a.m.3 views

VulnCheck KEV: CVE-2024-47374

Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in LiteSpeed Technologies LiteSpeed Cache litespeed-cache allows Stored XSS.This issue affects LiteSpeed Cache: from n/a through = 6.5.0.2...

7.1CVSS5.8AI score0.0141EPSS
Exploits0References1
VulnCheck KEV
VulnCheck KEV
added 2025/02/27 12:0 a.m.3 views

VulnCheck KEV: CVE-2024-44000

Insufficiently Protected Credentials vulnerability in LiteSpeed Technologies LiteSpeed Cache litespeed-cache allows Authentication Bypass.This issue affects LiteSpeed Cache: from n/a through 6.5.0.1...

9.8CVSS5.8AI score0.83178EPSS
Exploits7References1
RedhatCVE
RedhatCVE
added 2025/02/05 8:32 a.m.8 views

CVE-2024-47637

Relative Path Traversal vulnerability in LiteSpeed Technologies LiteSpeed Cache litespeed-cache allows Path Traversal.This issue affects LiteSpeed Cache: from n/a through = 6.4.1...

8.8CVSS5.9AI score0.00634EPSS
Exploits0References1
RedhatCVE
RedhatCVE
added 2025/02/05 6:51 a.m.2 views

CVE-2024-50550

Incorrect Privilege Assignment vulnerability in LiteSpeed Technologies LiteSpeed Cache litespeed-cache allows Privilege Escalation.This issue affects LiteSpeed Cache: from n/a through = 6.5.1...

9.8CVSS7.4AI score0.00913EPSS
Exploits0References1
RedhatCVE
RedhatCVE
added 2025/02/05 12:59 a.m.7 views

CVE-2024-28000

Incorrect Privilege Assignment vulnerability in LiteSpeed Technologies LiteSpeed Cache litespeed-cache.This issue affects LiteSpeed Cache: from n/a through = 6.3.0.1...

9.8CVSS6AI score0.68266EPSS
Exploits8References1
RedhatCVE
RedhatCVE
added 2025/02/04 10:45 p.m.8 views

CVE-2024-44000

Insufficiently Protected Credentials vulnerability in LiteSpeed Technologies LiteSpeed Cache litespeed-cache allows Authentication Bypass.This issue affects LiteSpeed Cache: from n/a through 6.5.0.1...

9.8CVSS7.4AI score0.83178EPSS
Exploits7References1
Patchstack
Patchstack
added 2024/12/20 6:10 p.m.7 views

WordPress LiteSpeed Cache plugin <= 6.5.2 - Cross Site Scripting (XSS) vulnerability

Cross Site Scripting XSS vulnerability discovered by TaiYou Patchstack Alliance in WordPress Plugin LiteSpeed Cache versions = 6.5.2...

6.1AI score0.00236EPSS
Exploits0Affected Software1
OpenVAS
OpenVAS
added 2024/11/04 12:0 a.m.19 views

WordPress LiteSpeed Cache Plugin < 6.5.2 Privilege Escalation Vulnerability

The WordPress plugin SPDX-FileCopyrightText: 2024 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only CPE = "cpe:/a:litespeedtech:litespeedcache"; if description...

9.8CVSS9.2AI score0.00913EPSS
Exploits0References2
The Hacker News
The Hacker News
added 2024/10/31 10:24 a.m.33 views

LiteSpeed Cache Plugin Vulnerability Poses Significant Risk to WordPress Websites

A high-severity security flaw has been disclosed in the LiteSpeed Cache plugin for WordPress that could allow an unauthenticated threat actor to elevate their privileges and perform malicious actions. The vulnerability, tracked as CVE-2024-50550 CVSS score: 8.1, has been addressed in version 6.5....

10CVSS8.5AI score0.83178EPSS
Exploits15
OSV
OSV
added 2024/10/29 10:15 a.m.2 views

CVE-2024-50550

Incorrect Privilege Assignment vulnerability in LiteSpeed Technologies LiteSpeed Cache allows Privilege Escalation.This issue affects LiteSpeed Cache: from n/a through 6.5.1...

9.8CVSS7.5AI score0.00913EPSS
Exploits0References1
Cvelist
Cvelist
added 2024/10/29 9:57 a.m.49 views

CVE-2024-50550 WordPress LiteSpeed Cache plugin <= 6.5.1 - Privilege Escalation vulnerability

Incorrect Privilege Assignment vulnerability in LiteSpeed Technologies LiteSpeed Cache litespeed-cache allows Privilege Escalation.This issue affects LiteSpeed Cache: from n/a through = 6.5.1...

8.1CVSS0.00913EPSS
Exploits0References1
Vulnrichment
Vulnrichment
added 2024/10/29 9:57 a.m.24 views

CVE-2024-50550 WordPress LiteSpeed Cache plugin <= 6.5.1 - Privilege Escalation vulnerability

Incorrect Privilege Assignment vulnerability in LiteSpeed Technologies LiteSpeed Cache litespeed-cache allows Privilege Escalation.This issue affects LiteSpeed Cache: from n/a through = 6.5.1...

8.1CVSS7.4AI score0.00913EPSS
Exploits0References1
Patchstack
Patchstack
added 2024/10/29 5:30 a.m.4 views

WordPress LiteSpeed Cache plugin <= 6.5.1 - Privilege Escalation vulnerability

Privilege Escalation vulnerability discovered by TaiYou in WordPress Plugin LiteSpeed Cache versions = 6.5.1...

9.8CVSS7AI score0.00913EPSS
Exploits0Affected Software1
Patchstack
Patchstack
added 2024/10/29 12:0 a.m.33 views

WordPress LiteSpeed Cache Plugin <= 6.5.1 is vulnerable to Privilege Escalation

Software LiteSpeed Cache Type Plugin Vulnerable versions = 6.5.1 Fixed in 6.5.2 OWASP Top 10 A7: Identification and Authentication Failures Classification Privilege Escalation CVE CVE-2024-50550 Patch priority High CVSS severity High 8.1 Developer Hai Zheng / Lite Speed Cache PSID a12edc6aefb8...

9.8CVSS6.6AI score0.00913EPSS
Exploits0References2Affected Software1
CNNVD
CNNVD
added 2024/10/29 12:0 a.m.4 views

WordPress plugin LiteSpeed Cache 安全漏洞

WordPress and WordPress plugin are both products of the WordPress Foundation.WordPress is a blogging platform developed using the PHP language. The platform supports setting up personal blog sites on servers with PHP and MySQL.WordPress plugin is an application plugin. A security vulnerability...

9.8CVSS8.8AI score0.00913EPSS
Exploits0References1
Positive Technologies
Positive Technologies
added 2024/10/29 12:0 a.m.4 views

PT-2024-34329 · Litespeed · Litespeed Cache

Name of the Vulnerable Software and Affected Versions: LiteSpeed Cache versions through 6.5.1 Description: The issue is related to an Incorrect Privilege Assignment vulnerability in LiteSpeed Cache, allowing Privilege Escalation. This vulnerability enables an attacker to gain administrative...

9.8CVSS7.6AI score0.00913EPSS
Exploits0References42
OSV
OSV
added 2024/10/20 12:15 p.m.1 views

CVE-2024-44000

Insufficiently Protected Credentials vulnerability in LiteSpeed Technologies LiteSpeed Cache allows Authentication Bypass.This issue affects LiteSpeed Cache: from n/a before 6.5.0.1...

9.8CVSS5.8AI score0.83178EPSS
Exploits7References2
NVD
NVD
added 2024/10/20 12:15 p.m.33 views

CVE-2024-44000

Insufficiently Protected Credentials vulnerability in LiteSpeed Technologies LiteSpeed Cache litespeed-cache allows Authentication Bypass.This issue affects LiteSpeed Cache: from n/a through 6.5.0.1...

9.8CVSS0.83178EPSS
Exploits7References1
Rows per page
Query Builder