Wpfastestcache Wp Fastest Cache — known CVE vulnerabilities
Every CVE whose affected-product data names Wpfastestcache Wp Fastest Cache, ordered by CVSS severity, with EPSS exploit prediction and CISA KEV status.
CVEs (29)
CVE-2015-9316 — CVSS 9.8 (critical): The wp-fastest-cache plugin before 0.8.4.9 for WordPress has SQL injection in wp-admin/admin-ajax.php?action=wpfc_wppolls_ajax_request via…
CVE-2019-13635 — CVSS 9.1 (critical): The WP Fastest Cache plugin through 0.8.9.5 for WordPress allows wpFastestCache.php and inc/cache.php Directory Traversal.
CVE-2023-1938 — CVSS 8.8 (high): The WP Fastest Cache WordPress plugin before 1.1.5 does not have CSRF check in an AJAX action, and does not validate user input before…
CVE-2021-24869 — CVSS 8.8 (high): The WP Fastest Cache WordPress plugin before 0.9.5 does not escape user input in the set_urls_with_terms method before using it in a SQL…
CVE-2018-17584 — CVSS 8.8 (high): The WP Fastest Cache plugin 0.8.8.5 for WordPress has CSRF via the wp-admin/admin.php wpfastestcacheoptions page.
CVE-2015-4089 — CVSS 8.8 (high): Multiple cross-site request forgery (CSRF) vulnerabilities in the optionsPageRequest function in admin.php in WP Fastest Cache plugin…
CVE-2020-36836 — CVSS 8.0 (high): The WP Fastest Cache plugin for WordPress is vulnerable to unauthorized arbitrary file deletion in versions up to, and including, 0.9.0.2…
CVE-2023-6063 — CVSS 7.5 (high): The WP Fastest Cache WordPress plugin before 1.2.2 does not properly sanitise and escape a parameter before using it in a SQL statement…
CVE-2021-20714 — CVSS 6.5 (medium): Directory traversal vulnerability in WP Fastest Cache versions prior to 0.9.1.7 allows a remote attacker with administrator privileges to…
CVE-2019-6726 — CVSS 6.5 (medium): The WP Fastest Cache plugin through 0.8.9.0 for WordPress allows remote attackers to delete arbitrary files because wp_postratings_clear_fas…
CVE-2021-24870 — CVSS 6.1 (medium): The WP Fastest Cache WordPress plugin before 0.9.5 is lacking a CSRF check in its wpfc_save_cdn_integration AJAX action, and does not…
CVE-2018-17583 — CVSS 6.1 (medium): The WP Fastest Cache plugin 0.8.8.5 for WordPress has XSS via the rules[0][content] parameter in a wpfc_save_exclude_pages action.
CVE-2018-17586 — CVSS 6.1 (medium): The WP Fastest Cache plugin 0.8.8.5 for WordPress has XSS via the rules[0][content] parameter in a wpfc_save_timeout_pages action.
CVE-2018-17585 — CVSS 6.1 (medium): The WP Fastest Cache plugin 0.8.8.5 for WordPress has XSS via the wpfastestcacheoptions wpFastestCachePreload_number or…
CVE-2023-1919 — CVSS 4.3 (medium): The WP Fastest Cache plugin for WordPress is vulnerable to Cross-Site Request Forgery in versions up to, and including, 1.1.2. This is due…
CVE-2023-1920 — CVSS 4.3 (medium): The WP Fastest Cache plugin for WordPress is vulnerable to Cross-Site Request Forgery in versions up to, and including, 1.1.2. This is due…
CVE-2023-1921 — CVSS 4.3 (medium): The WP Fastest Cache plugin for WordPress is vulnerable to Cross-Site Request Forgery in versions up to, and including, 1.1.2. This is due…
CVE-2023-1922 — CVSS 4.3 (medium): The WP Fastest Cache plugin for WordPress is vulnerable to Cross-Site Request Forgery in versions up to, and including, 1.1.2. This is due…
CVE-2023-1923 — CVSS 4.3 (medium): The WP Fastest Cache plugin for WordPress is vulnerable to Cross-Site Request Forgery in versions up to, and including, 1.1.2. This is due…
CVE-2023-1924 — CVSS 4.3 (medium): The WP Fastest Cache plugin for WordPress is vulnerable to Cross-Site Request Forgery in versions up to, and including, 1.1.2. This is due…
CVE-2023-1925 — CVSS 4.3 (medium): The WP Fastest Cache plugin for WordPress is vulnerable to Cross-Site Request Forgery in versions up to, and including, 1.1.2. This is due…
CVE-2023-1926 — CVSS 4.3 (medium): The WP Fastest Cache plugin for WordPress is vulnerable to Cross-Site Request Forgery in versions up to, and including, 1.1.2. This is due…
CVE-2023-1927 — CVSS 4.3 (medium): The WP Fastest Cache plugin for WordPress is vulnerable to Cross-Site Request Forgery in versions up to, and including, 1.1.2. This is due…
CVE-2023-1928 — CVSS 4.3 (medium): The WP Fastest Cache plugin for WordPress is vulnerable to unauthorized data modification due to a missing capability check on the…
CVE-2023-1929 — CVSS 4.3 (medium): The WP Fastest Cache plugin for WordPress is vulnerable to unauthorized data modification due to a missing capability check on the…
CVE-2023-1930 — CVSS 4.3 (medium): The WP Fastest Cache plugin for WordPress is vulnerable to unauthorized data deletion due to a missing capability check on the…
CVE-2023-1931 — CVSS 4.3 (medium): The WP Fastest Cache plugin for WordPress is vulnerable to unauthorized data loss due to a missing capability check on the…
CVE-2023-1375 — CVSS 4.3 (medium): The WP Fastest Cache plugin for WordPress is vulnerable to unauthorized cache deletion in versions up to, and including, 1.1.2 due to a…
CVE-2023-1918 — CVSS 4.3 (medium): The WP Fastest Cache plugin for WordPress is vulnerable to Cross-Site Request Forgery in versions up to, and including, 1.1.2. This is due…