Generic filters
Exact matches only
Search in title
Search in content
Filter by Custom Post Type
Filter by Categories

WordPress Plugin Flaw Puts 5 Million Sites at Risk

A security flaw (CVE-2023-40000) in the LiteSpeed Cache plugin for WordPress allows unauthenticated users to gain privileges. Developers patched it in version The vulnerability permits cross-site scripting attacks, which can lead to data theft and site manipulation. LiteSpeed Cache, used for site optimization, has 5M+ installations. The previous XSS flaw (CVE-2023-4372) allowed attackers to inject web scripts.



Cubic Lighthouse is a cybersecurity publication dedicated to demystifying security, making news actionable, providing deeper thinking about the fundamentals of security, and providing decision-makers and the community at large with the right information to make the right decisions. We will also feature more technical articles and provide personal/family security advice.

©2024 Cubic Consulting, a Smart Security Company for your Business – All Rights Reserved.