cleantalk
Vulnerabilities and Security Researches

SpeedyCache – Cache, Optimization, Performance, CVE-2023-6598

CVE, Research URL

CVE-2023-6598

Home page URL

Security reports for SpeedyCache – Cache, Optimization, Performance

Application

SpeedyCache – Cache, Optimization, Performance

Published on
Jan 11, 2024
Research Description
The SpeedyCache plugin for WordPress is vulnerable to unauthorized modification of data due to a missing capability check on the speedycache_save_varniship, speedycache_img_update_settings, speedycache_preloading_add_settings, and speedycache_preloading_delete_resource functions in all versions up to, and including, 1.1.3. This makes it possible for authenticated attackers, with subscriber-level access and above, to update plugin options.
Affected versions
max 1.1.4.
Status
vulnerable
Previous vulnerability researches
SpeedyCache – Cache, Optimization, Performance (CVE-2023-6598) , Jun 06, 2024
SpeedyCache – Cache, Optimization, Performance (a4ef16792ad0d4324e229e95f7c2ea4019d4f925) , Jun 06, 2024
SpeedyCache – Cache, Optimization, Performance (CVE-2023-49746) , Jun 06, 2024
SpeedyCache – Cache, Optimization, Performance (CVE-2024-43299) , Aug 20, 2024
SpeedyCache – Cache, Optimization, Performance , Mar 18, 2026
New vulnerability
File Manager Pro – Filester , Mar 30, 2026
Simple Author Box , Mar 30, 2026
Customizable WordPress Gallery Plugin – Modula Image Gallery , Mar 30, 2026
Speed Optimizer – The All-In-One WordPress Performance-Boosting Plugin , Mar 30, 2026
Product Feed PRO for WooCommerce (CVE-2026-32443) , Mar 30, 2026