LiteSpeed Cache, the popular WordPress plugin known for enhancing website loading speed, has released version 6.4.1 with a critical vulnerability fix. It is advised that users promptly update to the latest version as attackers may exploit this vulnerability, which could potentially impact a wide range of websites.
The vulnerability, identified as CVE-2024-28000, leverages the user emulation feature of LiteSpeed Cache, specifically targeting instances where cache levels are set to low. This loophole could allow attackers to manipulate caches and even create admin-level user accounts.
Source: Bleeping Computer
TLDR: LiteSpeed Cache plugin for WordPress has patched a critical vulnerability in version 6.4.1. Users are urged to update promptly to prevent potential security breaches.
Leave a Comment