all InfoSec news
WordPress LiteSpeed Plugin Vulnerability Puts 5 Million Sites at Risk
Feb. 27, 2024, 2:43 p.m. | info@thehackernews.com (The Hacker News)
The Hacker News thehackernews.com
Tracked as CVE-2023-40000, the vulnerability was addressed in October 2023 in version 5.7.0.1.
"This plugin suffers from unauthenticated site-wide stored [cross-site scripting] vulnerability and could allow any unauthenticated user
cache cross-site cve enable october plugin plugin vulnerability privileges risk scripting security security vulnerability unauthenticated version vulnerability wordpress
More from thehackernews.com / The Hacker News
Jobs in InfoSec / Cybersecurity
Information Security Engineers
@ D. E. Shaw Research | New York City
Technology Security Analyst
@ Halton Region | Oakville, Ontario, Canada
Senior Cyber Security Analyst
@ Valley Water | San Jose, CA
Sr. Staff Firmware Engineer – Networking & Firewall
@ Axiado | Bengaluru, India
Compliance Architect / Product Security Sr. Engineer/Expert (f/m/d)
@ SAP | Walldorf, DE, 69190
SAP Security Administrator
@ FARO Technologies | EMEA-Portugal