Lucene search
PatchstackCVELIST:CVE-2023-49746HistoryDec 07, 2023 - 10:50 a.m.
CVE-2023-49746 WordPress SpeedyCache Plugin <= 1.1.2 is vulnerable to Server Side Request Forgery (SSRF)
2023-12-0710:50:20
CWE-918
Patchstack
www.cve.org
1
wordpress
speedycache plugin
vulnerability
server side request forgery
ssrf
CVSS3
4.9
Attack Vector
NETWORK
Attack Complexity
HIGH
Privileges Required
LOW
User Interaction
NONE
Scope
CHANGED
Confidentiality Impact
LOW
Integrity Impact
LOW
Availability Impact
NONE
CVSS:3.1/AV:N/AC:H/PR:L/UI:N/S:C/C:L/I:L/A:N
AI Score
5.5
Confidence
High
EPSS
0
Percentile
14.0%
Server-Side Request Forgery (SSRF) vulnerability in Softaculous Team SpeedyCache – Cache, Optimization, Performance.This issue affects SpeedyCache – Cache, Optimization, Performance: from n/a through 1.1.2.
CNA Affected
[
{
"collectionURL": "https://wordpress.org/plugins",
"defaultStatus": "unaffected",
"packageName": "speedycache",
"product": "SpeedyCache – Cache, Optimization, Performance",
"vendor": "Softaculous Team",
"versions": [
{
"changes": [
{
"at": "1.1.3",
"status": "unaffected"
}
],
"lessThanOrEqual": "1.1.2",
"status": "affected",
"version": "n/a",
"versionType": "custom"
}
]
}
]Related
wpvulndb
wpvulndb
nvd
nvd
CVE-2023-49746
2023-12-07 11:15:08
cve
cve
CVE-2023-49746
2023-12-07 11:15:08
prion
prion
Server side request forgery (ssrf)
2023-12-07 11:15:00
openvas
openvas
WordPress SpeedyCache Plugin < 1.1.3 SSRF Vulnerability
2023-12-12 00:00:00
wordfence
wordfence
CVSS3
4.9
Attack Vector
NETWORK
Attack Complexity
HIGH
Privileges Required
LOW
User Interaction
NONE
Scope
CHANGED
Confidentiality Impact
LOW
Integrity Impact
LOW
Availability Impact
NONE
CVSS:3.1/AV:N/AC:H/PR:L/UI:N/S:C/C:L/I:L/A:N
AI Score
5.5
Confidence
High
EPSS
0
Percentile
14.0%
Related for CVELIST:CVE-2023-49746