Wpfastestcache: >> Wp Fastest Cache >> 1.1.3 Security Vulnerabilities
The WP Fastest Cache WordPress plugin before 1.2.2 does not properly sanitise and escape a parameter before using it in a SQL statement, leading to a SQL injection exploitable by unauthenticated users.
CVSS Score
7.5
EPSS Score
0.919
Published
2023-12-04
The WP Fastest Cache WordPress plugin before 1.1.5 does not have CSRF check in an AJAX action, and does not validate user input before using it in the wp_remote_get() function, leading to a Blind SSRF issue
CVSS Score
8.8
EPSS Score
0.209
Published
2023-05-30