SpeedyCache < 1.1.3 – Authenticated (Subscriber+) Server-Side Request Forgery | CVE 2023-49746 | Plugin Vulnerabilities

Description

The SpeedyCache – Cache, Optimization, Performance plugin for WordPress is vulnerable to Server-Side Request Forgery in all versions up to, and including, 1.1.2 via the speedycache_create_test_cache() function. This makes it possible for authenticated attackers, subscriber-level access and above, to make web requests to arbitrary locations originating from the web application and can be used to query and modify information from internal services.

Affects Plugins

Fixed in 1.1.3

References

CVE

URL

https://www.wordfence.com/threat-intel/vulnerabilities/id/ab922406-4af8-4ef2-bcc8-c326212546b1

Classification

Type

SSRF

OWASP top 10

CWE

CVSS

Miscellaneous

Original Researcher

Yuchen Ji

Verified

No

WPVDB ID

09fe7c94-e0fc-4de2-bd8f-cf2d3183751c

Timeline

Publicly Published

2023-12-04 (about 2 years ago)

Added

2023-12-08 (about 2 years ago)

Last Updated

2023-12-08 (about 2 years ago)

Other

Published

Title

Published

2025-12-10

Title

RSS Aggregator by Feedzy – Feed to Post, Autoblogging, News & YouTube Video Feeds Aggregator < 5.1.2 - Unauthenticated Blind Server-Side Request Forgery

Published

2020-11-30

Title

Canto < 3.0.9 - Unauthenticated Blind SSRF

Published

2022-08-03

Title

MailChimp for Woocommerce < 2.7.1 - Subscriber+ SSRF

Published

2025-02-26

Title

OneStore Sites <= 0.1.1 - Unauthenticated Blind Server-Side Request Forgery

Published

2025-05-07

Title

Easy Replace Image < 3.5.1 - Authenticated (Contributor+) Server-Side Request Forgery