Litespeedtech

Litespeed Cache

16 Schwachstellen gefunden.

Hinweis: Diese Liste kann unvollständig sein. Daten werden ohne Gewähr im Ursprungsformat bereitgestellt.
6.1

CVE-2025-12450

  • EPSS 0.11%
  • Veröffentlicht 29.10.2025 09:27:57
  • Zuletzt bearbeitet 15.04.2026 00:35:42

The LiteSpeed Cache plugin for WordPress is vulnerable to Reflected Cross-Site Scripting via URLs in all versions up to, and including, 7.5.0.1 due to insufficient input sanitization and output escaping. This makes it possible for unauthenticated att...

9.8

CVE-2024-50550

  • EPSS 1.01%
  • Veröffentlicht 29.10.2024 10:15:04
  • Zuletzt bearbeitet 23.04.2026 15:20:10

Incorrect Privilege Assignment vulnerability in LiteSpeed Technologies LiteSpeed Cache litespeed-cache allows Privilege Escalation.This issue affects LiteSpeed Cache: from n/a through <= 6.5.1.

9.8

CVE-2024-44000

Exploit
  • EPSS 91.93%
  • Veröffentlicht 20.10.2024 12:15:03
  • Zuletzt bearbeitet 23.04.2026 15:18:57

Insufficiently Protected Credentials vulnerability in LiteSpeed Technologies LiteSpeed Cache litespeed-cache allows Authentication Bypass.This issue affects LiteSpeed Cache: from n/a through < 6.5.0.1.

8.8

CVE-2024-47637

  • EPSS 2.15%
  • Veröffentlicht 16.10.2024 14:15:06
  • Zuletzt bearbeitet 23.04.2026 15:19:23

Relative Path Traversal vulnerability in LiteSpeed Technologies LiteSpeed Cache litespeed-cache allows Path Traversal.This issue affects LiteSpeed Cache: from n/a through <= 6.4.1.

5.4

CVE-2024-47373

  • EPSS 0.18%
  • Veröffentlicht 05.10.2024 16:15:03
  • Zuletzt bearbeitet 23.04.2026 15:19:15

Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in LiteSpeed Technologies LiteSpeed Cache litespeed-cache allows Stored XSS.This issue affects LiteSpeed Cache: from n/a through <= 6.5.0.2.

6.1

CVE-2024-47374

  • EPSS 21.35%
  • Veröffentlicht 05.10.2024 16:15:03
  • Zuletzt bearbeitet 23.04.2026 15:19:16

Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in LiteSpeed Technologies LiteSpeed Cache litespeed-cache allows Stored XSS.This issue affects LiteSpeed Cache: from n/a through <= 6.5.0.2.

4.8

CVE-2024-9169

  • EPSS 0.19%
  • Veröffentlicht 25.09.2024 09:15:03
  • Zuletzt bearbeitet 26.09.2024 13:32:02

The LiteSpeed Cache plugin for WordPress is vulnerable to Stored Cross-Site Scripting via plugin debug settings in all versions up to, and including, 6.4.1 due to insufficient input sanitization and output escaping. This makes it possible for authent...

9.8

CVE-2024-28000

Exploit
  • EPSS 92.06%
  • Veröffentlicht 21.08.2024 14:15:08
  • Zuletzt bearbeitet 29.04.2026 10:16:32

Incorrect Privilege Assignment vulnerability in LiteSpeed Technologies LiteSpeed Cache litespeed-cache.This issue affects LiteSpeed Cache: from n/a through <= 6.3.0.1.

5.4

CVE-2024-3246

  • EPSS 0.33%
  • Veröffentlicht 24.07.2024 04:15:04
  • Zuletzt bearbeitet 21.11.2024 09:29:14

The LiteSpeed Cache plugin for WordPress is vulnerable to Cross-Site Request Forgery in all versions up to, and including, 6.2.0.1. This is due to missing or incorrect nonce validation. This makes it possible for unauthenticated attackers to update t...

6.1

CVE-2023-40000

Exploit
  • EPSS 82.03%
  • Veröffentlicht 16.04.2024 18:15:10
  • Zuletzt bearbeitet 28.04.2026 19:21:06

Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in LiteSpeed Technologies LiteSpeed Cache allows Stored XSS.This issue affects LiteSpeed Cache: from n/a through 5.7.