2 matches found
CVE-2021-24869
The WP Fastest Cache WordPress plugin before 0.9.5 does not escape user input in the seturlswithterms method before using it in a SQL statement, leading to an SQL injection exploitable by low privilege users such as subscriber...
PT-2024-10893 · WordPress · Wp Fastest Cache
Name of the Vulnerable Software and Affected Versions: WP Fastest Cache versions prior to 0.9.5 Description: The issue is related to the set urls with terms method, which does not properly escape user input before using it in a SQL statement. This leads to an SQL injection that can be exploited b...