Dirty Cache Trouble: Vulnerability Affects WP Fastest Cache Plugin
CVE-2024-4347
7.2HIGH
What is CVE-2024-4347?
A directory traversal vulnerability exists in the WP Fastest Cache plugin for WordPress, affecting all versions up to and including 1.2.6. This vulnerability can be exploited through the specificDeleteCache function, allowing authenticated attackers to delete arbitrary files on the server. This includes sensitive configuration files like wp-config.php, which could jeopardize the security of the affected site, particularly in shared hosting environments. Prompt actions to update the affected plugin are highly recommended to mitigate potential risks.
Affected Version(s)
WP Fastest Cache * <= 1.2.6