🧹It's time for some spring cleaning! All researchers earn over 6.25x our normal bounty rates, through May 27th, 2024, when Wordfence handles responsible disclosure for our Spring Cleaning Bug Extravaganza! Learn more about our bug bounty program
Register as a researcher and submit your vulnerabilities today!

WP Fastest Cache

Wordfence Intelligence > Vulnerability Database > WordPress Plugins > WP Fastest Cache

Information

Software Type	Plugin
Software Slug	wp-fastest-cache (view on wordpress.org)
Software Status	Active
Software Author	emrevona
Software Website	wordpress.org
Software Downloads	48,074,976
Software Active Installs	1,000,000
Software Record Last Updated	May 3, 2024

Showing 1-20 of 33 Vulnerabilities

WP Fastest Cache <= 1.1.2 - Cross-Site Request Forgery via 'deleteCssAndJsCacheToolbar'

4.3

CVE-2023-1927

Apr 6, 2023

Researcher: Marco Wotschka

WP Fastest Cache <= 1.1.2 - Cross-Site Request Forgery via 'wpfc_remove_cdn_integration_ajax_request_callback'

4.3

CVE-2023-1923

Apr 6, 2023

Researcher: Marco Wotschka

WP Fastest Cache <= 1.1.2 - Cross-Site Request Forgery via 'wpfc_pause_cdn_integration_ajax_request_callback'

4.3

CVE-2023-1922

Apr 6, 2023

Researcher: Marco Wotschka

WP Fastest Cache <= 1.1.2 - Cross-Site Request Forgery via 'wpfc_start_cdn_integration_ajax_request_callback'

4.3

CVE-2023-1921

Apr 6, 2023

Researcher: Marco Wotschka

WP Fastest Cache <= 1.1.2 - Cross-Site Request Forgery via 'wpfc_purgecache_varnish_callback'

4.3

CVE-2023-1920

Apr 6, 2023

Researcher: Marco Wotschka

WP Fastest Cache <= 1.1.2 - Cross-Site Request Forgery via 'wpfc_preload_single_save_settings_callback'

4.3

CVE-2023-1919

Apr 6, 2023

Researcher: Marco Wotschka

WP Fastest Cache <= 1.1.2 - Cross-Site Request Forgery via 'wpfc_preload_single_callback'

4.3

CVE-2023-1918

Apr 6, 2023

Researcher: Marco Wotschka

WP Fastest Cache <= 1.1.2 - Cross-Site Request Forgery via 'wpfc_toolbar_save_settings_callback'

4.3

CVE-2023-1924

Apr 6, 2023

Researcher: Marco Wotschka

WP Fastest Cache <= 1.1.2 - Cross-Site Request Forgery via 'wpfc_clear_cache_of_allsites_callback'

4.3

CVE-2023-1925

Apr 6, 2023

Researcher: Marco Wotschka

WP Fastest Cache <= 1.1.2 - Cross-Site Request Forgery via 'deleteCacheToolbar'

4.3

CVE-2023-1926

Apr 6, 2023

Researcher: Marco Wotschka

WP Fastest Cache <= 1.1.2 - Missing Authorization in 'wpfc_preload_single_callback'

4.3

CVE-2023-1928

Apr 6, 2023

Researcher: Marco Wotschka

WP Fastest Cache <= 1.1.2 - Missing Authorization in 'wpfc_purgecache_varnish_callback'

4.3

CVE-2023-1929

Apr 6, 2023

Researcher: Marco Wotschka

WP Fastest Cache <= 1.1.2 - Missing Authorization in 'wpfc_clear_cache_of_allsites_callback'

4.3

CVE-2023-1930

Apr 6, 2023

Researcher: Marco Wotschka

WP Fastest Cache <= 1.1.2 - Missing Authorization in 'deleteCssAndJsCacheToolbar'

4.3

CVE-2023-1931

Apr 6, 2023

Researcher: Marco Wotschka

WP Fastest Cache <= 1.1.2 - Missing Authorization to Cache Deletion

4.3

CVE-2023-1375

Apr 6, 2023

Researcher: Marco Wotschka

WP Fastest Cache <= 0.8.5.7 - Missing Authorization

4.9

CVE ID Unknown

May 23, 2016

Researcher: Panagiotis Vagenas

WP Fastest Cache <= 0.8.8.5 - Cross-Site Scripting via rules[0][content] parameter

6.1

CVE-2018-17586

Oct 9, 2018

Researcher: Mohammed Ansari

WP Fastest Cache <= 0.8.8.5 - Cross-Site Scripting via wpFastestCachePage options, wpFastestCachePreload_number or wpFastestCacheLanguage parameter

6.1

CVE-2018-17585

Oct 9, 2018

Researcher: Mohammed Ansari

WP Fastest Cache <= 0.8.8.5 - Cross-Site Scripting via the rules[0][content] parameter in a wpfc_save_exclude_pages action

6.1

CVE-2018-17583

Oct 9, 2018

Researcher: Mohammed Ansari

WP Fastest Cache <= 1.1.4 - Authenticated(Administrator+) Blind Server Side Request Forgery via check_url

6.5

CVE-2023-1938

May 2, 2023

Researcher: Erwan LR

Title	CVE ID	CVSS	Researchers	Date
WP Fastest Cache <= 1.1.2 - Cross-Site Request Forgery via 'deleteCssAndJsCacheToolbar'	CVE-2023-1927	4.3	Marco Wotschka	April 6, 2023
WP Fastest Cache <= 1.1.2 - Cross-Site Request Forgery via 'wpfc_remove_cdn_integration_ajax_request_callback'	CVE-2023-1923	4.3	Marco Wotschka	April 6, 2023
WP Fastest Cache <= 1.1.2 - Cross-Site Request Forgery via 'wpfc_pause_cdn_integration_ajax_request_callback'	CVE-2023-1922	4.3	Marco Wotschka	April 6, 2023
WP Fastest Cache <= 1.1.2 - Cross-Site Request Forgery via 'wpfc_start_cdn_integration_ajax_request_callback'	CVE-2023-1921	4.3	Marco Wotschka	April 6, 2023
WP Fastest Cache <= 1.1.2 - Cross-Site Request Forgery via 'wpfc_purgecache_varnish_callback'	CVE-2023-1920	4.3	Marco Wotschka	April 6, 2023
WP Fastest Cache <= 1.1.2 - Cross-Site Request Forgery via 'wpfc_preload_single_save_settings_callback'	CVE-2023-1919	4.3	Marco Wotschka	April 6, 2023
WP Fastest Cache <= 1.1.2 - Cross-Site Request Forgery via 'wpfc_preload_single_callback'	CVE-2023-1918	4.3	Marco Wotschka	April 6, 2023
WP Fastest Cache <= 1.1.2 - Cross-Site Request Forgery via 'wpfc_toolbar_save_settings_callback'	CVE-2023-1924	4.3	Marco Wotschka	April 6, 2023
WP Fastest Cache <= 1.1.2 - Cross-Site Request Forgery via 'wpfc_clear_cache_of_allsites_callback'	CVE-2023-1925	4.3	Marco Wotschka	April 6, 2023
WP Fastest Cache <= 1.1.2 - Cross-Site Request Forgery via 'deleteCacheToolbar'	CVE-2023-1926	4.3	Marco Wotschka	April 6, 2023
WP Fastest Cache <= 1.1.2 - Missing Authorization in 'wpfc_preload_single_callback'	CVE-2023-1928	4.3	Marco Wotschka	April 6, 2023
WP Fastest Cache <= 1.1.2 - Missing Authorization in 'wpfc_purgecache_varnish_callback'	CVE-2023-1929	4.3	Marco Wotschka	April 6, 2023
WP Fastest Cache <= 1.1.2 - Missing Authorization in 'wpfc_clear_cache_of_allsites_callback'	CVE-2023-1930	4.3	Marco Wotschka	April 6, 2023
WP Fastest Cache <= 1.1.2 - Missing Authorization in 'deleteCssAndJsCacheToolbar'	CVE-2023-1931	4.3	Marco Wotschka	April 6, 2023
WP Fastest Cache <= 1.1.2 - Missing Authorization to Cache Deletion	CVE-2023-1375	4.3	Marco Wotschka	April 6, 2023
WP Fastest Cache <= 0.8.5.7 - Missing Authorization		4.9	Panagiotis Vagenas	May 23, 2016
WP Fastest Cache <= 0.8.8.5 - Cross-Site Scripting via rules[0][content] parameter	CVE-2018-17586	6.1	Mohammed Ansari	October 9, 2018
WP Fastest Cache <= 0.8.8.5 - Cross-Site Scripting via wpFastestCachePage options, wpFastestCachePreload_number or wpFastestCacheLanguage parameter	CVE-2018-17585	6.1	Mohammed Ansari	October 9, 2018
WP Fastest Cache <= 0.8.8.5 - Cross-Site Scripting via the rules[0][content] parameter in a wpfc_save_exclude_pages action	CVE-2018-17583	6.1	Mohammed Ansari	October 9, 2018
WP Fastest Cache <= 1.1.4 - Authenticated(Administrator+) Blind Server Side Request Forgery via check_url	CVE-2023-1938	6.5	Erwan LR	May 2, 2023

1
2
›
»

Did you know Wordfence Intelligence provides free personal and commercial API access to our comprehensive WordPress vulnerability database, along with a free webhook integration to stay on top of the latest vulnerabilities added and updated in the database? Get started today!

Want to get notified of the latest vulnerabilities that may affect your WordPress site?
Install Wordfence on your site today to get notified immediately if your site is affected by a vulnerability that has been added to our database.

The Wordfence Intelligence WordPress vulnerability database is completely free to access and query via API. Please review the documentation on how to access and consume the vulnerability data via API.