CVE-2024-12365 — CVSS 8.5 (high): The W3 Total Cache plugin for WordPress is vulnerable to unauthorized access of data due to a missing capability check on the…
CVE-2012-6079 — CVSS 7.5 (high): W3 Total Cache before 0.9.2.5 exposes sensitive cached database information which allows remote attackers to download this information via…
CVE-2012-6077 — CVSS 7.5 (high): W3 Total Cache before 0.9.2.5 allows remote attackers to retrieve password hash information due to insecure storage of database cache files.
CVE-2012-6078 — CVSS 7.5 (high): W3 Total Cache before 0.9.2.5 generates hash keys insecurely which allows remote attackers to predict the values of the hashes.
CVE-2019-6715 — CVSS 7.5 (high): pub/sns.php in the W3 Total Cache plugin before 0.9.4 for WordPress allows remote attackers to read arbitrary files via the SubscribeURL…
CVE-2014-9414 — CVSS 6.8 (medium): The W3 Total Cache plugin before 0.9.4.1 for WordPress does not properly handle empty nonces, which allows remote attackers to conduct…
CVE-2021-24436 — CVSS 6.1 (medium): The W3 Total Cache WordPress plugin before 2.1.4 was vulnerable to a reflected Cross-Site Scripting (XSS) security vulnerability within the…
CVE-2021-24452 — CVSS 6.1 (medium): The W3 Total Cache WordPress plugin before 2.1.5 was affected by a reflected Cross-Site Scripting (XSS) issue within the "extension"…
CVE-2024-12008 — CVSS 5.3 (medium): The W3 Total Cache plugin for WordPress is vulnerable to Information Exposure in all versions up to, and including, 2.8.1 through the…
CVE-2024-12006 — CVSS 5.3 (medium): The W3 Total Cache plugin for WordPress is vulnerable to unauthorized modification of data due to a missing capability check on several…
CVE-2021-24427 — CVSS 4.8 (medium): The W3 Total Cache WordPress plugin before 2.1.3 did not sanitise or escape some of its CDN settings, allowing high privilege users to use…
CVE-2014-8724 — CVSS 4.3 (medium): Cross-site scripting (XSS) vulnerability in the W3 Total Cache plugin before 0.9.4.1 for WordPress, when debug mode is enabled, allows…
CVE-2023-5359 — CVSS 3.7 (low): The W3 Total Cache plugin for WordPress is vulnerable to Sensitive Information Exposure in versions up to, and including, 2.7.5 via Google…