WordPress Plugin Vulnerabilities

WP Super Cache < 1.4.9 - Cross-Site Scripting (XSS)

Description

The WP Super Cache WordPress plugin was affected by a Cross-Site Scripting (XSS) security vulnerability.

Affects Plugins

Plugin icon
wp-super-cache
Fixed in 1.4.9

References

URL
https://odd.blog/2017/02/03/wp-super-cache-1-4-9/

Classification

Type
XSS
OWASP top 10
A7: Cross-Site Scripting (XSS)
CWE
CWE-79
CVSS
5.9 (medium)

Miscellaneous

Submitter
ethicalhack3r
Submitter twitter
ethicalhack3r
Verified
No
WPVDB ID
fcad24bc-876e-4452-bca4-a072f8e86a02

Timeline

Publicly Published
2017-02-03 (about 9 years ago)
Added
2015-09-26 (about 10 years ago)
Last Updated
2021-03-16 (about 5 years ago)

Other

Published
Title
Published
2021-10-05
Title
Perfect Survey < 1.5.2 - Reflected Cross-Site Scripting
Published
2023-10-18
Title
Responsive Image Gallery, Gallery Album <= 2.0.3 - Unauthenticated Stored XSS
Published
2023-10-02
Title
Contact form Form For All <= 1.2 - Contributor+ Stored XSS
Published
2020-07-05
Title
Careerfy < 4.1.0 - Multiple Cross-Site Scripting (XSS) Issues
Published
2024-04-25
Title
ColorNews < 1.2.7 - Authenticated (Contributor+) Stored Cross-Site Scripting