WPScan
How it worksPricing
Vulnerabilities
WordPressPluginsThemesStatsSubmit vulnerabilities
For developers
StatusAPI detailsCLI scanner
Contact

WordPress Plugin Vulnerabilities

WP Super Cache

2022-10-03
WP Super Cache < 1.9 - Unauthenticated Cache Poisoning
Fixed in version 1.9
2021-05-14
WP Super Cache < 1.7.3 - Authenticated Remote Code Execution
Fixed in version 1.7.3
2021-04-12
WP Super Cache < 1.7.3 - Authenticated Stored Cross-Site Scripting (XSS)
Fixed in version 1.7.3
2021-03-16
WP Super Cache < 1.7.2 - Authenticated Remote Code Execution (RCE)
Fixed in version 1.7.2
2017-02-03
WP Super Cache < 1.4.9 - Cross-Site Scripting (XSS)
Fixed in version 1.4.9
2015-09-25
WP Super Cache < 1.4.5 - PHP Object Injection
Fixed in version 1.4.5
2015-04-07
WP Super Cache < 1.4.3 - Stored Cross-Site Scripting (XSS)
Fixed in version 1.4.3
2014-08-01
WP Super Cache 1.3 - trunk/plugins/domain-mapping.php URI XSS
Fixed in version 1.3.1
2014-08-01
WP Super Cache 1.3 - trunk/plugins/badbehaviour.php URI XSS
Fixed in version 1.3.1
2014-08-01
WP Super Cache 1.3 - trunk/plugins/awaitingmoderation.php URI XSS
Fixed in version 1.3.1
2014-08-01
WP Super Cache 1.3 - trunk/wp-cache.php wp_nonce_url Function URI XSS
Fixed in version 1.3.1
2014-08-01
WP Super Cache 1.3 - trunk/plugins/wptouch.php URI XSS
Fixed in version 1.3.1
2014-08-01
WP Super Cache 1.3 - trunk/plugins/searchengine.php URI XSS
Fixed in version 1.3.1
2014-08-01
WP-Super-Cache 1.3 - Remote Code Execution
Fixed in version 1.3.2