Lucene search
Ryan DewhurstWPVDB-ID:0983EAD6-81B1-43B1-AC35-088291B933ABHistoryMar 10, 2019 - 12:00 a.m.
WP Fastest Cache <= 0.8.9.0 - Unauthenticated Arbitrary File Deletion
2019-03-1000:00:00
Ryan Dewhurst
wpscan.com
5
0.022 Low
EPSS
Percentile
89.6%
According to the original researcher: “Although a successful exploit leads to data loss and potentially a DoS against the website, because wordpress won’t find important files to run, there are several requirements which need to be met: - WP Fastest Cache is installed and the cache is activated - Wordpress is configured to use ‘pretty’ URL schemes, like // etc. - WP Postratings [1] is installed - At least one ratable post or page was published”
| CPE | Name | Operator | Version |
|---|---|---|---|
| wp-fastest-cache | lt | 0.8.9.1 |
Related
packetstorm
packetstorm
WordPress WP Fastest Cache 0.8.9.0 Arbitrary File Deletion
2019-03-11 00:00:00
checkpoint_advisories
checkpoint_advisories
WordPress Fastest Cache Plugin Arbitrary File Deletion (CVE-2019-6726)
2019-03-24 00:00:00
openvas
openvas
WordPress Fastest Cache Plugin < 0.8.9.1 File Deletion Vulnerability
2019-08-01 00:00:00
cvelist
cvelist
CVE-2019-6726
2019-07-29 15:20:10
prion
prion
Design/Logic Flaw
2019-07-29 16:15:00
nvd
nvd
CVE-2019-6726
2019-07-29 16:15:12
zdt
zdt
WordPress Fastest Cache 0.8.9.0 Arbitrary File Deletion Exploit
2019-03-12 00:00:00
patchstack
patchstack
cve
cve
CVE-2019-6726
2019-07-29 16:15:12