Wpfastestcache: >> Wp Fastest Cache >> 0.8.8.5 Security Vulnerabilities
Directory traversal vulnerability in WP Fastest Cache versions prior to 0.9.1.7 allows a remote attacker with administrator privileges to delete arbitrary files on the server via unspecified vectors.
CVSS Score
6.5
EPSS Score
0.022
Published
2021-04-27
The WP Fastest Cache plugin through 0.8.9.5 for WordPress allows wpFastestCache.php and inc/cache.php Directory Traversal.
CVSS Score
9.1
EPSS Score
0.028
Published
2019-07-30
The WP Fastest Cache plugin through 0.8.9.0 for WordPress allows remote attackers to delete arbitrary files because wp_postratings_clear_fastest_cache and rm_folder_recursively in wpFastestCache.php mishandle ../ in an HTTP Referer header.
CVSS Score
6.5
EPSS Score
0.039
Published
2019-07-29
The WP Fastest Cache plugin 0.8.8.5 for WordPress has XSS via the rules[0][content] parameter in a wpfc_save_exclude_pages action.
CVSS Score
6.1
EPSS Score
0.003
Published
2019-04-15
The WP Fastest Cache plugin 0.8.8.5 for WordPress has CSRF via the wp-admin/admin.php wpfastestcacheoptions page.
CVSS Score
8.8
EPSS Score
0.002
Published
2019-04-15
The WP Fastest Cache plugin 0.8.8.5 for WordPress has XSS via the wpfastestcacheoptions wpFastestCachePreload_number or wpFastestCacheLanguage parameter.
CVSS Score
6.1
EPSS Score
0.003
Published
2019-04-15
The WP Fastest Cache plugin 0.8.8.5 for WordPress has XSS via the rules[0][content] parameter in a wpfc_save_timeout_pages action.
CVSS Score
6.1
EPSS Score
0.003
Published
2019-04-15
Page 3