Vulnerabilities > Softaculous
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2024-02-09 | CVE-2024-0842 | Excessive Iteration vulnerability in Softaculous Backuply The Backuply – Backup, Restore, Migrate and Clone plugin for WordPress is vulnerable to Denial of Service in all versions up to, and including, 1.2.5. | 7.5 |
| 2024-02-02 | CVE-2024-1189 | Improper Resource Shutdown or Release vulnerability in Softaculous Ampps A vulnerability has been found in AMPPS 2.7 and classified as problematic. | 7.5 |
| 2024-01-27 | CVE-2024-0697 | Path Traversal vulnerability in Softaculous Backuply The Backuply – Backup, Restore, Migrate and Clone plugin for WordPress is vulnerable to Directory Traversal in all versions up to, and including, 1.2.3 via the node_id parameter in the backuply_get_jstree function. | 4.9 |
| 2024-01-11 | CVE-2023-6598 | Missing Authorization vulnerability in Softaculous Speedycache The SpeedyCache plugin for WordPress is vulnerable to unauthorized modification of data due to a missing capability check on the speedycache_save_varniship, speedycache_img_update_settings, speedycache_preloading_add_settings, and speedycache_preloading_delete_resource functions in all versions up to, and including, 1.1.3. | 4.3 |
| 2023-12-07 | CVE-2023-49746 | Server-Side Request Forgery (SSRF) vulnerability in Softaculous Speedycache Server-Side Request Forgery (SSRF) vulnerability in Softaculous Team SpeedyCache – Cache, Optimization, Performance.This issue affects SpeedyCache – Cache, Optimization, Performance: from n/a through 1.1.2. | 4.3 |
| 2021-03-18 | CVE-2020-26886 | Improper Initialization vulnerability in Softaculous Softaculous before 5.5.7 is affected by a code execution vulnerability because of External Initialization of Trusted Variables or Data Stores. | 6.9 |
| 2017-03-11 | CVE-2017-6513 | Permission Issues vulnerability in Softaculous Whmcs Reseller Module 2.0.2 The WHMCS Reseller Module V2 2.0.2 in Softaculous Virtualizor before 2.9.1.0 does not verify the user correctly, which allows remote authenticated users to control other virtual machines managed by Virtualizor by accessing a modified URL. | 6.5 |