Vulnerabilities > Litespeedtech > Litespeed Cache > 2.2.0.1
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2024-10-29 | CVE-2024-50550 | Inadequate Encryption Strength vulnerability in Litespeedtech Litespeed Cache Incorrect Privilege Assignment vulnerability in LiteSpeed Technologies LiteSpeed Cache allows Privilege Escalation.This issue affects LiteSpeed Cache: from n/a through 6.5.1. | 9.8 |
| 2024-10-20 | CVE-2024-44000 | Insufficiently Protected Credentials vulnerability in Litespeedtech Litespeed Cache Insufficiently Protected Credentials vulnerability in LiteSpeed Technologies LiteSpeed Cache allows Authentication Bypass.This issue affects LiteSpeed Cache: from n/a before 6.5.0.1. | 9.8 |
| 2024-10-16 | CVE-2024-47637 | Unspecified vulnerability in Litespeedtech Litespeed Cache : Relative Path Traversal vulnerability in LiteSpeed Technologies LiteSpeed Cache allows Path Traversal.This issue affects LiteSpeed Cache: from n/a through 6.4.1. | 8.8 |
| 2024-10-05 | CVE-2024-47373 | Cross-site Scripting vulnerability in Litespeedtech Litespeed Cache Improper Neutralization of Input During Web Page Generation (XSS or 'Cross-site Scripting') vulnerability in LiteSpeed Technologies LiteSpeed Cache allows Stored XSS.This issue affects LiteSpeed Cache: from n/a through 6.5.0.2. | 5.4 |
| 2024-10-05 | CVE-2024-47374 | Cross-site Scripting vulnerability in Litespeedtech Litespeed Cache Improper Neutralization of Input During Web Page Generation (XSS or 'Cross-site Scripting') vulnerability in LiteSpeed Technologies LiteSpeed Cache allows Stored XSS.This issue affects LiteSpeed Cache: from n/a through 6.5.0.2. | 6.1 |
| 2024-09-25 | CVE-2024-9169 | Cross-site Scripting vulnerability in Litespeedtech Litespeed Cache The LiteSpeed Cache plugin for WordPress is vulnerable to Stored Cross-Site Scripting via plugin debug settings in all versions up to, and including, 6.4.1 due to insufficient input sanitization and output escaping. | 4.8 |
| 2024-08-21 | CVE-2024-28000 | Unspecified vulnerability in Litespeedtech Litespeed Cache Incorrect Privilege Assignment vulnerability in LiteSpeed Technologies LiteSpeed Cache litespeed-cache allows Privilege Escalation.This issue affects LiteSpeed Cache: from 1.9 through 6.3.0.1. | 9.8 |
| 2024-07-24 | CVE-2024-3246 | Cross-Site Request Forgery (CSRF) vulnerability in Litespeedtech Litespeed Cache The LiteSpeed Cache plugin for WordPress is vulnerable to Cross-Site Request Forgery in all versions up to, and including, 6.2.0.1. | 5.4 |
| 2024-04-16 | CVE-2023-45000 | Unspecified vulnerability in Litespeedtech Litespeed Cache Missing Authorization vulnerability in LiteSpeed Technologies LiteSpeed Cache.This issue affects LiteSpeed Cache: from n/a through 5.7. | 5.3 |
| 2024-01-11 | CVE-2023-4372 | Cross-site Scripting vulnerability in Litespeedtech Litespeed Cache The LiteSpeed Cache plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the 'esi' shortcode in versions up to, and including, 5.6 due to insufficient input sanitization and output escaping on user supplied attributes. | 5.4 |