CVE-2024-28000
WordPress LiteSpeed Cache plugin <= 6.3.0.1 - Unauthenticated Privilege Escalation vulnerability
Incorrect Privilege Assignment vulnerability in LiteSpeed Technologies LiteSpeed Cache litespeed-cache.This issue affects LiteSpeed Cache: from n/a through <= 6.3.0.1.
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
Produtos afetados
LiteSpeed Technologies · LiteSpeed CachePoCs públicas encontradas — 7
githubgithub.com/Alucard0x1/CVE-2024-28000★ 23githubgithub.com/arch1m3d/CVE-2024-28000★ 7githubgithub.com/ebrasha/CVE-2024-28000★ 5githubgithub.com/JohnDoeAnonITA/CVE-2024-28000★ 5githubgithub.com/SSSSuperX/CVE-2024-28000★ 1cve_referencepacketstorm.news/files/id/200819/não verificadocve_referencewww.exploit-db.com/exploits/52328não verificado⚠ Recursos públicos, para você avaliar a exposição de sistemas que controla ou está autorizado a testar. Teste apenas com autorização.
Quer saber se a sua infraestrutura está exposta a isto?
Falar com a TrueHacking →Referências
https://packetstorm.news/files/id/200819/https://patchstack.com/database/Wordpress/Plugin/litespeed-cache/vulnerability/wordpress-litespeed-cache-plugin-6-3-0-1-unauthenticated-privilege-escalation-vulnerability?_s_id=cvehttps://thehackernews.com/2024/08/critical-flaw-in-wordpress-litespeed.html?m=1https://www.exploit-db.com/exploits/52328