Security News > 2024 > October > WordPress LiteSpeed Cache Plugin Security Flaw Exposes Sites to XSS Attacks
2024-10-04 09:11
A new high-severity security flaw has been disclosed in the LiteSpeed Cache plugin for WordPress that could enable malicious actors to execute arbitrary JavaScript code under certain conditions. The flaw, tracked as CVE-2024-47374 (CVSS score: 7.2), has been described as a stored cross-site scripting (XSS) vulnerability impacting all versions of the plugin up to and including 6.5.0.2. It was
News URL
https://thehackernews.com/2024/10/wordpress-litespeed-cache-plugin.html
Related news
- Litespeed Cache bug exposes millions of WordPress sites to takeover attacks (source)
- LiteSpeed Cache bug exposes 6 million WordPress sites to takeover attacks (source)
- Critical Security Flaw Found in LiteSpeed Cache Plugin for WordPress (source)
- Most Ransomware Attacks Occur When Security Staff Are Asleep, Study Finds (source)
- Critical Flaw in WordPress LiteSpeed Cache Plugin Allows Hackers Admin Access (source)
- SQL Injection Attack on Airport Security (source)
- Security measures fail to keep up with rising email attacks (source)
- Google Adds New Pixel Security Features to Block 2G Exploits and Baseband Attacks (source)