Filtered by vendor Softaculous Subscriptions
Filtered by product Speedycache Subscriptions
Total 3 CVE
CVE Vendors Products Updated CVSS v3.1
CVE-2023-6598 1 Softaculous 1 Speedycache 2024-11-21 4.3 Medium
The SpeedyCache plugin for WordPress is vulnerable to unauthorized modification of data due to a missing capability check on the speedycache_save_varniship, speedycache_img_update_settings, speedycache_preloading_add_settings, and speedycache_preloading_delete_resource functions in all versions up to, and including, 1.1.3. This makes it possible for authenticated attackers, with subscriber-level access and above, to update plugin options.
CVE-2023-49746 1 Softaculous 1 Speedycache 2024-11-21 4.9 Medium
Server-Side Request Forgery (SSRF) vulnerability in Softaculous Team SpeedyCache – Cache, Optimization, Performance.This issue affects SpeedyCache – Cache, Optimization, Performance: from n/a through 1.1.2.
CVE-2024-43299 1 Softaculous 1 Speedycache 2024-09-13 5.4 Medium
Cross-Site Request Forgery (CSRF) vulnerability in Softaculous Team SpeedyCache.This issue affects SpeedyCache: from n/a through 1.1.8.