Security News > 2024 > August > Critical Flaw in WordPress LiteSpeed Cache Plugin Allows Hackers Admin Access
2024-08-22 05:02
Cybersecurity researchers have disclosed a critical security flaw in the LiteSpeed Cache plugin for WordPress that could permit unauthenticated users to gain administrator privileges. "The plugin suffers from an unauthenticated privilege escalation vulnerability which allows any unauthenticated visitor to gain Administrator level access after which malicious plugins could be uploaded and
News URL
https://thehackernews.com/2024/08/critical-flaw-in-wordpress-litespeed.html
Related news
- Critical FortiSwitch flaw lets hackers change admin passwords remotely (source)
- Hackers exploit WordPress plugin auth bypass hours after disclosure (source)
- Hackers Exploit Critical Craft CMS Flaws; Hundreds of Servers Likely Compromised (source)
- CISA warns of hackers targeting critical oil infrastructure (source)
- Hackers exploit OttoKit WordPress plugin flaw to add admin accounts (source)
- Over 100,000 WordPress Sites at Risk from Critical CVSS 10.0 Vulnerability in Wishlist Plugin (source)
- Hackers are exploiting critical flaw in vBulletin forum software (source)