all InfoSec news logo
all InfoSec news - Your InfoSec news aggregator
Log in Sign up
all InfoSec news

WordPress LiteSpeed Plugin Vulnerability Puts 5 Million Sites at Risk

Add to bookmarks
Feb. 27, 2024, 2:43 p.m. | info@thehackernews.com (The Hacker News)

The Hacker News thehackernews.com

A security vulnerability has been disclosed in the LiteSpeed Cache plugin for WordPress that could enable unauthenticated users to escalate their privileges.
Tracked as CVE-2023-40000, the vulnerability was addressed in October 2023 in version 5.7.0.1.
"This plugin suffers from unauthenticated site-wide stored [cross-site scripting] vulnerability and could allow any unauthenticated user

cache cross-site cve enable october plugin plugin vulnerability privileges risk scripting security security vulnerability unauthenticated version vulnerability wordpress

Visit resource

More from thehackernews.com / The Hacker News

Kinsing Hacker Group Exploits More Flaws to Expand Botnet for Cryptojacking 1 day, 11 hours ago | thehackernews.com
actor aqua arsenal botnet +16
New XM Cyber Research: 80% of Exposures from Misconfigurations, Less Than 1% from CVEs 1 day, 17 hours ago | thehackernews.com
cves cyber exposure exposure management +16
China-Linked Hackers Adopt Two-Stage Infection Tactic to Deploy Deuterbear RAT 1 day, 17 hours ago | thehackernews.com
access advancements asia blacktech +23
Kimsuky APT Deploying Linux Backdoor Gomir in South Korean Cyber Attacks 1 day, 20 hours ago | thehackernews.com
advanced advanced persistent threat apt attacks +20
CISA Warns of Actively Exploited D-Link Router Vulnerabilities - Patch Now 1 day, 22 hours ago | thehackernews.com
actively exploited agency catalog cisa +27
New Wi-Fi Vulnerability Enables Network Eavesdropping via Downgrade Attacks 2 days, 12 hours ago | thehackernews.com
attack attacks clients cve +19
North Korean Hackers Exploit Facebook Messenger in Targeted Malware Campaign 2 days, 15 hours ago | thehackernews.com
account accounts actor attack +31
Researchers Uncover 11 Security Flaws in GE HealthCare Ultrasound Machines 2 days, 18 hours ago | thehackernews.com
data exploited family flaws +18
Cybercriminals Exploiting Microsoft’s Quick Assist Feature in Ransomware Attacks 3 days, 1 hour ago | thehackernews.com
abusing attacks basta black basta +27

Jobs in InfoSec / Cybersecurity

Post a Job Search Talent

Information Security Engineers

@ D. E. Shaw Research | New York City
View on infosec-jobs.com

Technology Security Analyst

@ Halton Region | Oakville, Ontario, Canada
View on infosec-jobs.com

Senior Cyber Security Analyst

@ Valley Water | San Jose, CA
View on infosec-jobs.com

Sr. Staff Firmware Engineer – Networking & Firewall

@ Axiado | Bengaluru, India
View on infosec-jobs.com

Compliance Architect / Product Security Sr. Engineer/Expert (f/m/d)

@ SAP | Walldorf, DE, 69190
View on infosec-jobs.com

SAP Security Administrator

@ FARO Technologies | EMEA-Portugal
View on infosec-jobs.com