CVE-2024-28000
WordPress LiteSpeed Cache plugin <= 6.3.0.1 - Unauthenticated Privilege Escalation vulnerability
CVSS Score
0.0
EPSS Score
0.0%
EPSS Percentile
0th
Incorrect Privilege Assignment vulnerability in LiteSpeed Technologies LiteSpeed Cache litespeed-cache.This issue affects LiteSpeed Cache: from n/a through <= 6.3.0.1.
| CWE | CWE-266 |
| Vendor | litespeed technologies |
| Product | litespeed cache |
| Published | Aug 21, 2024 |
| Last Updated | Apr 23, 2026 |
Stay Ahead of the Next One
Get instant alerts for litespeed technologies litespeed cache
Be the first to know when new unknown vulnerabilities affecting litespeed technologies litespeed cache are published โ delivered to Slack, Telegram or Discord.
Get Free Alerts โ
Free ยท No credit card ยท 60 sec setup
Affected Versions
LiteSpeed Technologies / LiteSpeed Cache
0 โค 6.3.0.1
References
patchstack.com: https://patchstack.com/database/Wordpress/Plugin/litespeed-cache/vulnerability/wordpress-litespeed-cache-plugin-6-3-0-1-unauthenticated-privilege-escalation-vulnerability?_s_id=cve exploit-db.com: https://www.exploit-db.com/exploits/52328 thehackernews.com: https://thehackernews.com/2024/08/critical-flaw-in-wordpress-litespeed.html?m=1 packetstorm.news: https://packetstorm.news/files/id/200819/
Credits
John Blackbourn | Patchstack Bug Bounty Program