Hacking News WordPress LiteSpeed Plugin Vulnerability Puts 5 Million Sites at Risk

Hacking News WordPress LiteSpeed Plugin Vulnerability Puts 5 Million Sites at Risk - Printable Version

+- (https://hackmyride.com/forum)
+-- Forum: Automotive Hacking (https://hackmyride.com/forum/forumdisplay.php?fid=211)
+--- Forum: News (https://hackmyride.com/forum/forumdisplay.php?fid=278)
+---- Forum: The Hacker News (https://hackmyride.com/forum/forumdisplay.php?fid=279)
+---- Thread: Hacking News WordPress LiteSpeed Plugin Vulnerability Puts 5 Million Sites at Risk (/showthread.php?tid=13908)

WordPress LiteSpeed Plugin Vulnerability Puts 5 Million Sites at Risk - The Hacker News - 02-28-2024

WordPress LiteSpeed Plugin Vulnerability Puts 5 Million Sites at Risk

A security vulnerability has been disclosed in the LiteSpeed Cache plugin for WordPress that could enable unauthenticated users to escalate their privileges.
Tracked as CVE-2023-40000, the vulnerability was addressed in October 2023 in version 5.7.0.1.
"This plugin suffers from unauthenticated site-wide stored [cross-site scripting] vulnerability and could allow any unauthenticated user

https://thehackernews.com/2024/02/wordpress-litespeed-plugin.html