Wp Fastest Cache Security Vulnerabilities and Issues — Wp Fastest Cache CVE List

Lucene search

WpfastestcacheWp Fastest Cache

6 matches found

CVE•added 2019/07/29 4:15 p.m.•60 views

CVE-2019-6726

The WP Fastest Cache plugin through 0.8.9.0 for WordPress allows remote attackers to delete arbitrary files because wp_postratings_clear_fastest_cache and rm_folder_recursively in wpFastestCache.php mishandle ../ in an HTTP Referer header.

6.5CVSS6.5AI score0.03912EPSS

CVE•added 2021/04/27 6:15 a.m.•58 views

CVE-2021-20714

Directory traversal vulnerability in WP Fastest Cache versions prior to 0.9.1.7 allows a remote attacker with administrator privileges to delete arbitrary files on the server via unspecified vectors.

6.5CVSS6.3AI score0.02219EPSS

CVE•added 2019/04/15 8:29 p.m.•39 views

CVE-2018-17585

The WP Fastest Cache plugin 0.8.8.5 for WordPress has XSS via the wpfastestcacheoptions wpFastestCachePreload_number or wpFastestCacheLanguage parameter.

6.1CVSS6.6AI score0.00264EPSS

CVE•added 2019/04/15 8:29 p.m.•34 views

CVE-2018-17586

The WP Fastest Cache plugin 0.8.8.5 for WordPress has XSS via the rules[0][content] parameter in a wpfc_save_timeout_pages action.

6.1CVSS6.5AI score0.00264EPSS

CVE•added 2019/04/15 8:29 p.m.•31 views

CVE-2018-17583

The WP Fastest Cache plugin 0.8.8.5 for WordPress has XSS via the rules[0][content] parameter in a wpfc_save_exclude_pages action.

6.1CVSS6.5AI score0.00264EPSS

CVE•added 2024/01/16 4:15 p.m.•25 views

CVE-2021-24870

The WP Fastest Cache WordPress plugin before 0.9.5 is lacking a CSRF check in its wpfc_save_cdn_integration AJAX action, and does not sanitise and escape some the options available via the action, which could allow attackers to make logged in high privilege users call it and set a Cross-Site Script...

6.1CVSS6.3AI score0.00123EPSS