Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
wpfastestcache wp fastest cache vulnerabilities and exploits
(subscribe to this query)
4.3
CVSSv3
CVE-2023-1924
The WP Fastest Cache plugin for WordPress is vulnerable to Cross-Site Request Forgery in versions up to, and including, 1.1.2. This is due to missing or incorrect nonce validation on the wpfc_toolbar_save_settings_callback function. This makes it possible for unauthenticated mali...
Wpfastestcache Wp Fastest Cache
4.3
CVSSv3
CVE-2023-1926
The WP Fastest Cache plugin for WordPress is vulnerable to Cross-Site Request Forgery in versions up to, and including, 1.1.2. This is due to missing or incorrect nonce validation on the deleteCacheToolbar function. This makes it possible for unauthenticated malicious users to pe...
Wpfastestcache Wp Fastest Cache
4.3
CVSSv3
CVE-2023-1927
The WP Fastest Cache plugin for WordPress is vulnerable to Cross-Site Request Forgery in versions up to, and including, 1.1.2. This is due to missing or incorrect nonce validation on the deleteCssAndJsCacheToolbar function. This makes it possible for unauthenticated malicious use...
Wpfastestcache Wp Fastest Cache
8.8
CVSSv3
CVE-2015-4089
Multiple cross-site request forgery (CSRF) vulnerabilities in the optionsPageRequest function in admin.php in WP Fastest Cache plugin prior to 0.8.3.5 for WordPress allow remote malicious users to hijack the authentication of unspecified victims for requests that call the (1) sav...
Wpfastestcache Wp Fastest Cache
9.1
CVSSv3
CVE-2019-13635
The WP Fastest Cache plugin up to and including 0.8.9.5 for WordPress allows wpFastestCache.php and inc/cache.php Directory Traversal.
Wpfastestcache Wp Fastest Cache
9.8
CVSSv3
CVE-2015-9316
The wp-fastest-cache plugin prior to 0.8.4.9 for WordPress has SQL injection in wp-admin/admin-ajax.php?action=wpfc_wppolls_ajax_request via the poll_id parameter.
Wpfastestcache Wp Fastest Cache
7.5
CVSSv3
CVE-2023-6063
The WP Fastest Cache WordPress plugin prior to 1.2.2 does not properly sanitise and escape a parameter before using it in a SQL statement, leading to a SQL injection exploitable by unauthenticated users.
Wpfastestcache Wp Fastest Cache
7 Github repositories
6.5
CVSSv3
CVE-2019-6726
The WP Fastest Cache plugin up to and including 0.8.9.0 for WordPress allows remote malicious users to delete arbitrary files because wp_postratings_clear_fastest_cache and rm_folder_recursively in wpFastestCache.php mishandle ../ in an HTTP Referer header.
Wpfastestcache Wp Fastest Cache
4.3
CVSSv3
CVE-2023-1919
The WP Fastest Cache plugin for WordPress is vulnerable to Cross-Site Request Forgery in versions up to, and including, 1.1.2. This is due to missing or incorrect nonce validation on the wpfc_preload_single_save_settings_callback function. This makes it possible for unauthenticat...
Wpfastestcache Wp Fastest Cache
4.3
CVSSv3
CVE-2023-1921
The WP Fastest Cache plugin for WordPress is vulnerable to Cross-Site Request Forgery in versions up to, and including, 1.1.2. This is due to missing or incorrect nonce validation on the wpfc_start_cdn_integration_ajax_request_callback function. This makes it possible for unauthe...
Wpfastestcache Wp Fastest Cache
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2024-20065
open redirect
CVE-2024-1086
path traversal
CVE-2024-29825
XXE
CVE-2024-29822
CVE-2024-20696
CVE-2024-3564
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
1
2
3
NEXT »