Vulnerabilities > Boldgrid > W3 Total Cache > 2.2.6

DATE CVE VULNERABILITY TITLE RISK
2025-01-14 CVE-2024-12006 Missing Authorization vulnerability in Boldgrid W3 Total Cache
The W3 Total Cache plugin for WordPress is vulnerable to unauthorized modification of data due to a missing capability check on several functions in all versions up to, and including, 2.8.1.
network
low complexity
boldgrid CWE-862
5.3
5.3
2025-01-14 CVE-2024-12008 Unspecified vulnerability in Boldgrid W3 Total Cache
The W3 Total Cache plugin for WordPress is vulnerable to Information Exposure in all versions up to, and including, 2.8.1 through the publicly exposed debug log file.
network
low complexity
boldgrid
7.5
7.5
2025-01-14 CVE-2024-12365 Missing Authorization vulnerability in Boldgrid W3 Total Cache
The W3 Total Cache plugin for WordPress is vulnerable to unauthorized access of data due to a missing capability check on the is_w3tc_admin_page function in all versions up to, and including, 2.8.1.
network
low complexity
boldgrid CWE-862
8.5
8.5
2024-09-25 CVE-2023-5359 Cleartext Storage of Sensitive Information vulnerability in Boldgrid W3 Total Cache
The W3 Total Cache plugin for WordPress is vulnerable to Sensitive Information Exposure in versions up to, and including, 2.7.5 via Google OAuth API secrets stored in plaintext in the publicly visible plugin source.
network
low complexity
boldgrid CWE-312
7.5
7.5