cleantalk
Vulnerabilities and Security Researches

W3 Total Cache, f4dd379d6047628a42a4e08403e5ed8d741577c7

CVE, Research URL

f4dd379d6047628a42a4e08403e5ed8d741577c7

Home page URL

Security reports for W3 Total Cache

Application

W3 Total Cache

Published on
May 01, 2013
Research Description
W3 Total Cache [w3-total-cache] < 0.9.2.9 WordPress W3 Total Cache plugin <= 0.9.2.8 - PHP Code Execution vulnerability W3 Total Cache plugin is prone to a PHP code execution vulnerability because of the handling of certain macros such as "mfunc" that allows arbitrary PHP code injection. Update the WordPress W3 Total Cache plugin to the latest available version (at least 0.9.2.9).
Affected versions
max 0.9.2.9.
Status
vulnerable
Previous vulnerability researches
W3 Total Cache (CVE-2026-39595) , Jun 19, 2026
W3 Total Cache (CVE-2024-12365) , Jan 14, 2025
W3 Total Cache (CVE-2024-12006) , Jan 14, 2025
W3 Total Cache (CVE-2024-12008) , Jan 14, 2025
W3 Total Cache (91816c620bff939df0db1b9923ab56362614d8ff) , Jun 16, 2026
New vulnerability
CF7 to Webhook (CVE-2026-11395) , Jun 19, 2026
W3 Total Cache (CVE-2026-39595) , Jun 19, 2026
Advanced Ads – Ad Manager &amp; AdSense (CVE-2026-54816) , Jun 19, 2026
Advanced Order Export For WooCommerce (CVE-2026-11360) , Jun 19, 2026
WP Activity Log (CVE-2026-54806) , Jun 18, 2026