WordPress LiteSpeed Cache Plugin Security Update Advisory (CVE-2024-47374)

Oct 08 2024

Overview

An update has been released to address vulnerabilities in WordPress LiteSpeed Cache Plugin. Users of the affected versions are advised to update to the latest version.

Affected Products

CVE-2024-47374

LiteSpeed Cache versions: ~ 6.5.0.2 (inclusive)

Resolved Vulnerabilities

Improperly sanitizing (XSS or ‘cross-site scripting’) input during web page generation in LiteSpeed Technologies (CVE-2024-47374)

Vulnerability Patches

The following product-specific Vulnerability Patches have been made available in the latest update. If you are using an affected version, Please follow the instructions on the Referenced Sites to update to the latest Vulnerability Patches version.

CVE-2024-47374

LiteSpeed Cache version: 6.5.1

References

[1] CVE-2024-47374 Detail

https://nvd.nist.gov/vuln/detail/CVE-2024-47374

[2] WordPress LiteSpeed Cache Plugin <= 6.5.0.2 is vulnerable to Cross Site Scripting (XSS)

https://patchstack.com/database/vulnerability/litespeed-cache/wordpress-litespeed-cache-plugin-6-5-0-2-cross-site-scripting-xss-vulnerability?_s_id=cve

WordPress LiteSpeed Cache Plugin Security Update Advisory (CVE-2024-47374)

Microsoft Edge browser (129.0.2792.79) version security update advisory

Redis Vulnerability Security Update Advisory (CVE-2024-31449)

Tags:

Microsoft Edge browser (129.0.2792.79) version security update advisory

Redis Vulnerability Security Update Advisory (CVE-2024-31449)