Wpfastestcache: >> Wp Fastest Cache >> 0.8.4.8 Security Vulnerabilities
Directory traversal vulnerability in WP Fastest Cache versions prior to 0.9.1.7 allows a remote attacker with administrator privileges to delete arbitrary files on the server via unspecified vectors.
CVSS Score
6.5
EPSS Score
0.022
Published
2021-04-27
The wp-fastest-cache plugin before 0.8.4.9 for WordPress has SQL injection in wp-admin/admin-ajax.php?action=wpfc_wppolls_ajax_request via the poll_id parameter.
CVSS Score
9.8
EPSS Score
0.015
Published
2019-08-14
The WP Fastest Cache plugin through 0.8.9.5 for WordPress allows wpFastestCache.php and inc/cache.php Directory Traversal.
CVSS Score
9.1
EPSS Score
0.028
Published
2019-07-30
The WP Fastest Cache plugin through 0.8.9.0 for WordPress allows remote attackers to delete arbitrary files because wp_postratings_clear_fastest_cache and rm_folder_recursively in wpFastestCache.php mishandle ../ in an HTTP Referer header.
CVSS Score
6.5
EPSS Score
0.039
Published
2019-07-29
Page 3