Security
Headlines
HeadlinesLatestCVEs

Headline

WordPress LiteSpeed Plugin Vulnerability Puts 5 Million Sites at Risk

A security vulnerability has been disclosed in the LiteSpeed Cache plugin for WordPress that could enable unauthenticated users to escalate their privileges. Tracked as CVE-2023-40000, the vulnerability was addressed in October 2023 in version 5.7.0.1. "This plugin suffers from unauthenticated site-wide stored [cross-site scripting] vulnerability and could allow any unauthenticated user

The Hacker News
#xss#vulnerability#wordpress#auth#The Hacker News

The Hacker News: Latest News

Ruijie Networks' Cloud Platform Flaws Could Expose 50,000 Devices to Remote Attacks