Vulnerabilities > Rapidload > Medium
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2023-06-22 | CVE-2022-47593 | SQL Injection vulnerability in Rapidload Power-Up for Autoptimize Auth. | 6.5 |
| 2023-03-17 | CVE-2023-1472 | Cross-Site Request Forgery (CSRF) vulnerability in Rapidload Power-Up for Autoptimize The RapidLoad Power-Up for Autoptimize plugin for WordPress is vulnerable to Cross-Site Request Forgery in versions up to, and including, 1.7.1. | 6.3 |
| 2023-03-10 | CVE-2023-1333 | Unspecified vulnerability in Rapidload Power-Up for Autoptimize The RapidLoad Power-Up for Autoptimize plugin for WordPress is vulnerable to unauthorized loss of data due to a missing capability check on the clear_page_cache function in versions up to, and including, 1.7.1. | 4.3 |
| 2023-03-10 | CVE-2023-1334 | Unspecified vulnerability in Rapidload Power-Up for Autoptimize The RapidLoad Power-Up for Autoptimize plugin for WordPress is vulnerable to unauthorized cache modification due to a missing capability check on the queue_posts function in versions up to, and including, 1.7.1. | 4.3 |
| 2023-03-10 | CVE-2023-1335 | Unspecified vulnerability in Rapidload Power-Up for Autoptimize The RapidLoad Power-Up for Autoptimize plugin for WordPress is vulnerable to unauthorized plugin settings update due to a missing capability check on the ucss_connect function in versions up to, and including, 1.7.1. | 4.3 |
| 2023-03-10 | CVE-2023-1336 | Unspecified vulnerability in Rapidload Power-Up for Autoptimize The RapidLoad Power-Up for Autoptimize plugin for WordPress is vulnerable to unauthorized settings update due to a missing capability check on the ajax_deactivate function in versions up to, and including, 1.7.1. | 4.3 |
| 2023-03-10 | CVE-2023-1337 | Missing Authorization vulnerability in Rapidload Power-Up for Autoptimize The RapidLoad Power-Up for Autoptimize plugin for WordPress is vulnerable to unauthorized data loss due to a missing capability check on the clear_uucss_logs function in versions up to, and including, 1.7.1. | 4.3 |
| 2023-03-10 | CVE-2023-1338 | Unspecified vulnerability in Rapidload Power-Up for Autoptimize The RapidLoad Power-Up for Autoptimize plugin for WordPress is vulnerable to unauthorized cache modification due to a missing capability check on the attach_rule function in versions up to, and including, 1.7.1. | 4.3 |
| 2023-03-10 | CVE-2023-1339 | Unspecified vulnerability in Rapidload Power-Up for Autoptimize The RapidLoad Power-Up for Autoptimize plugin for WordPress is vulnerable to unauthorized settings update due to a missing capability check on the uucss_update_rule function in versions up to, and including, 1.7.1. | 4.3 |
| 2023-03-10 | CVE-2023-1340 | Unspecified vulnerability in Rapidload Power-Up for Autoptimize The RapidLoad Power-Up for Autoptimize plugin for WordPress is vulnerable to Cross-Site Request Forgery in versions up to, and including, 1.7.1. | 4.3 |