Vulnerabilities > Wpfastestcache > WP Fastest Cache > 0.8.8.5
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2021-04-27 | CVE-2021-20714 | Path Traversal vulnerability in Wpfastestcache WP Fastest Cache Directory traversal vulnerability in WP Fastest Cache versions prior to 0.9.1.7 allows a remote attacker with administrator privileges to delete arbitrary files on the server via unspecified vectors. | 6.5 |
| 2019-07-30 | CVE-2019-13635 | Path Traversal vulnerability in Wpfastestcache WP Fastest Cache The WP Fastest Cache plugin through 0.8.9.5 for WordPress allows wpFastestCache.php and inc/cache.php Directory Traversal. | 9.1 |
| 2019-07-29 | CVE-2019-6726 | Path Traversal vulnerability in Wpfastestcache WP Fastest Cache The WP Fastest Cache plugin through 0.8.9.0 for WordPress allows remote attackers to delete arbitrary files because wp_postratings_clear_fastest_cache and rm_folder_recursively in wpFastestCache.php mishandle ../ in an HTTP Referer header. | 6.5 |
| 2019-04-15 | CVE-2018-17586 | Cross-site Scripting vulnerability in Wpfastestcache WP Fastest Cache 0.8.8.5 The WP Fastest Cache plugin 0.8.8.5 for WordPress has XSS via the rules[0][content] parameter in a wpfc_save_timeout_pages action. | 6.1 |
| 2019-04-15 | CVE-2018-17585 | Cross-site Scripting vulnerability in Wpfastestcache WP Fastest Cache 0.8.8.5 The WP Fastest Cache plugin 0.8.8.5 for WordPress has XSS via the wpfastestcacheoptions wpFastestCachePreload_number or wpFastestCacheLanguage parameter. | 6.1 |
| 2019-04-15 | CVE-2018-17584 | Cross-Site Request Forgery (CSRF) vulnerability in Wpfastestcache WP Fastest Cache 0.8.8.5 The WP Fastest Cache plugin 0.8.8.5 for WordPress has CSRF via the wp-admin/admin.php wpfastestcacheoptions page. | 8.8 |
| 2019-04-15 | CVE-2018-17583 | Cross-site Scripting vulnerability in Wpfastestcache WP Fastest Cache 0.8.8.5 The WP Fastest Cache plugin 0.8.8.5 for WordPress has XSS via the rules[0][content] parameter in a wpfc_save_exclude_pages action. | 6.1 |