Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
wpvulndbMarc MontpasWPVDB-ID:B2233795-1A32-45FC-9D51-B6BD0A073F5B
HistoryOct 14, 2021 - 12:00 a.m.

WP Fastest Cache < 0.9.5 - Subscriber+ SQL Injection

2021-10-1400:00:00
Marc Montpas
wpscan.com
12

0.001 Low

EPSS

Percentile

19.4%

JSON

The plugin does not escape user input in the set_urls_with_terms method before using it in a SQL statement, leading to an SQL injection exploitable by low privilege users such as subscriber

CPENameOperatorVersion
wp-fastest-cachelt0.9.5

Related

prion 1
cvelist 1
nvd 1
malwarebytes 1
cve 1
openvas 1
prion
prion
Sql injection
2024-01-16 16:15:00
cvelist
cvelist
CVE-2021-24869 WP Fastest Cache < 0.9.5 - Subscriber+ SQL Injection
2024-01-16 15:49:39
nvd
nvd
CVE-2021-24869
2024-01-16 16:15:09
malwarebytes
malwarebytes
Multiple vulnerabilities in popular WordPress plugin WP Fastest Cache
2021-10-18 13:37:17
cve
cve
CVE-2021-24869
2024-01-16 16:15:09
openvas
openvas
WordPress WP Fastest Cache Plugin < 0.9.5 Multiple Vulnerabilities
2021-11-03 00:00:00

0.001 Low

EPSS

Percentile

19.4%

JSON
Related for WPVDB-ID:B2233795-1A32-45FC-9D51-B6BD0A073F5B
prion1cvelist1nvd1malwarebytes1cve1openvas1