← Back

Wpfastestcache

wpfastestcache

29 CVEs • 1 product

Products (1)

Click to collapse
Toggle
Wp Fastest Cache
wp_fastest_cache
29 CVEs

CVEs (29)

CVE
VENDORS
PRODUCTS
UPDATED
PUBLISHED
CVSS
CVE-2021-20714
1Wpfastestcache
1Wp Fastest Cache
Nov 21, 2024
Apr 27, 2021
N/A· v4
6.5 MEDIUM· v3
5.5 MEDIUM· v2
Directory traversal vulnerability in WP Fastest Cache versions prior to 0.9.1.7 allows a remote attacker with administrator privileges to delete arbitrary files on the server via unspecified vectors.
CVE-2015-9316
1Wpfastestcache
1Wp Fastest Cache
Nov 21, 2024
Aug 14, 2019
N/A· v4
9.8 CRITICAL· v3
7.5 HIGH· v2
The wp-fastest-cache plugin before 0.8.4.9 for WordPress has SQL injection in wp-admin/admin-ajax.php?action=wpfc_wppolls_ajax_request via the poll_id parameter.
CVE-2019-13635
1Wpfastestcache
1Wp Fastest Cache
Jun 17, 2026
Jul 30, 2019
N/A· v4
9.1 CRITICAL· v3
6.4 MEDIUM· v2
The WP Fastest Cache plugin through 0.8.9.5 for WordPress allows wpFastestCache.php and inc/cache.php Directory Traversal.
CVE-2019-6726
1Wpfastestcache
1Wp Fastest Cache
Jun 17, 2026
Jul 29, 2019
N/A· v4
6.5 MEDIUM· v3
5.8 MEDIUM· v2
The WP Fastest Cache plugin through 0.8.9.0 for WordPress allows remote attackers to delete arbitrary files because wp_postratings_clear_fastest_cache and rm_folder_recursively in wpFastestCache.php mishandle ../ in an H...Show more
The WP Fastest Cache plugin through 0.8.9.0 for WordPress allows remote attackers to delete arbitrary files because wp_postratings_clear_fastest_cache and rm_folder_recursively in wpFastestCache.php mishandle ../ in an HTTP Referer header.Show less
CVE-2018-17586
1Wpfastestcache
1Wp Fastest Cache
Nov 21, 2024
Apr 15, 2019
N/A· v4
6.1 MEDIUM· v3
4.3 MEDIUM· v2
The WP Fastest Cache plugin 0.8.8.5 for WordPress has XSS via the rules[0][content] parameter in a wpfc_save_timeout_pages action.
CVE-2018-17585
1Wpfastestcache
1Wp Fastest Cache
Nov 21, 2024
Apr 15, 2019
N/A· v4
6.1 MEDIUM· v3
4.3 MEDIUM· v2
The WP Fastest Cache plugin 0.8.8.5 for WordPress has XSS via the wpfastestcacheoptions wpFastestCachePreload_number or wpFastestCacheLanguage parameter.
CVE-2018-17584
1Wpfastestcache
1Wp Fastest Cache
Nov 21, 2024
Apr 15, 2019
N/A· v4
8.8 HIGH· v3
6.8 MEDIUM· v2
The WP Fastest Cache plugin 0.8.8.5 for WordPress has CSRF via the wp-admin/admin.php wpfastestcacheoptions page.
CVE-2018-17583
1Wpfastestcache
1Wp Fastest Cache
Nov 21, 2024
Apr 15, 2019
N/A· v4
6.1 MEDIUM· v3
4.3 MEDIUM· v2
The WP Fastest Cache plugin 0.8.8.5 for WordPress has XSS via the rules[0][content] parameter in a wpfc_save_exclude_pages action.
CVE-2015-4089
1Wpfastestcache
1Wp Fastest Cache
May 13, 2026
Sep 19, 2017
N/A· v4
8.8 HIGH· v3
6.8 MEDIUM· v2
Multiple cross-site request forgery (CSRF) vulnerabilities in the optionsPageRequest function in admin.php in WP Fastest Cache plugin before 0.8.3.5 for WordPress allow remote attackers to hijack the authentication of un...Show more
Multiple cross-site request forgery (CSRF) vulnerabilities in the optionsPageRequest function in admin.php in WP Fastest Cache plugin before 0.8.3.5 for WordPress allow remote attackers to hijack the authentication of unspecified victims for requests that call the (1) saveOption, (2) deleteCache, (3) deleteCssAndJsCache, or (4) addCacheTimeout method via the wpFastestCachePage parameter in the WpFastestCacheOptions/ page.Show less