Close Menu
    Facebook X (Twitter) Instagram
    Trending
    • A New Funnel for Influencer Lead Gen
    • Influencer Gathering on a Tennis Court Fuels Buzz Around ASOS Nike Collection
    • 15+ LinkedIn Post Ideas Examples to Inspire Your Content Strategy
    • How to Evaluate Influencer Fit for NFT Campaigns
    • What is B2C Social Media Marketing: A Complete Guide
    • What Influencers and Brands Should Know
    • The Ultimate Guide to Tracking LinkedIn Analytics in 2025
    • How Influencers Are Monetizing NFTs Without Launching Their Own Collection
    YGLuk
    • Home
    • MsLi
      • MsLi’s Digital Products
      • MsLi’s Social Connections
    • Tiktok Specialist
    • TikTok Academy
    • Digital Marketing
    • Influencer Marketing
    • More
      • SEO
      • Digital Marketing Tips
      • Email Marketing
      • Content Marketing
      • SEM
      • Website Traffic
      • Marketing Trends
    YGLuk
    Home » SEO
    SEO

    WordPress Cache Plugin Vulnerability Affects +5 Million Websites

    YGLukBy YGLukAugust 23, 2024No Comments3 Mins Read
    Share
    Facebook Twitter LinkedIn Pinterest Email


    As much as 5 million installations of the LiteSpeed Cache WordPress plugin are weak to an exploit that enables hackers to realize administrator rights and add malicious recordsdata and plugins

    The vulnerability was first reported to Patchstack, a WordPress safety firm, which notified the plugin developer and waited till the vulnerability was patched earlier than making a public announcement.

    Patchstack founder Oliver Sild mentioned this with Search Engine Journal and offered background details about how the vulnerability was found and the way severe it’s.

    Sild shared:

    “It was reported to by the Patchstack WordPress Bug Bounty program which presents bounties to safety researchers who report vulnerabilities. The report certified for a $14,400 USD bounty. We work immediately with each the researcher and the plugin developer to make sure vulnerabilities get patched correctly earlier than public disclosure.

    We’ve monitored the WordPress ecosystem for attainable exploitation makes an attempt because the starting of August and thus far there aren’t any indicators of mass-exploitation. However we do anticipate this to change into exploited quickly although.”

    Requested how severe this vulnerability is, Sild responded:

    “It’s a vital vulnerability, made specifically harmful due to its massive set up base. Hackers are positively wanting into it as we communicate.”

    What Prompted The Vulnerability?

    In accordance with Patchstack, the compromise arose due to a plugin function that creates a brief person that crawls the location as a way to then create a cache of the online pages. A cache is a duplicate of net web page assets that saved and delivered to browsers after they request an internet web page. A cache quickens net pages by lowering the quantity of occasions a server has to fetch from a database to serve net pages.

    The technical clarification by Patchstack:

    “The vulnerability exploits a person simulation function within the plugin which is protected by a weak safety hash that makes use of identified values.

    …Sadly, this safety hash technology suffers from a number of issues that make its attainable values identified.”

    Suggestion

    Customers of the LiteSpeed WordPress plugin are inspired to replace their websites instantly as a result of hackers could also be looking down WordPress websites to use. The vulnerability was mounted in model 6.4.1 on August nineteenth.

    Customers of the Patchstack WordPress safety answer obtain prompt mitigation of vulnerabilities. Patchstack is out there in a free model and the paid model prices as little as $5/month.

    Learn extra concerning the vulnerability:

    Critical Privilege Escalation in LiteSpeed Cache Plugin Affecting 5+ Million Sites

    Featured Picture by Shutterstock/Asier Romero



    Source link

    Share. Facebook Twitter Pinterest LinkedIn Tumblr Email
    YGLuk
    • Website

    Related Posts

    Using Google Merchant Center Next For Competitive Analysis

    December 2, 2024

    The Definitive Guide For Your Online Store

    December 2, 2024

    Bluesky Emerges As Traffic Source: Publishers Report 3x Engagement

    December 2, 2024

    Google Chrome site engagement service metrics

    December 2, 2024
    Add A Comment
    Leave A Reply Cancel Reply

    five × 2 =

    Top Posts

    A New Funnel for Influencer Lead Gen

    July 4, 2025

    Influencer Gathering on a Tennis Court Fuels Buzz Around ASOS Nike Collection

    July 4, 2025

    15+ LinkedIn Post Ideas Examples to Inspire Your Content Strategy

    July 4, 2025

    How to Evaluate Influencer Fit for NFT Campaigns

    July 4, 2025

    What is B2C Social Media Marketing: A Complete Guide

    July 4, 2025
    Categories
    • Content Marketing
    • Digital Marketing
    • Digital Marketing Tips
    • Email Marketing
    • Influencer Marketing
    • Marketing Trends
    • SEM
    • SEO
    • TikTok Academy
    • Tiktok Specialist
    • Website Traffic
    About us

    Welcome to YGLuk.com – Your Gateway to Digital Success!

    At YGLuk, we are passionate about the ever-evolving world of Digital Marketing and Influencer Marketing. Our mission is to empower businesses and individuals to thrive in the digital landscape by providing valuable insights, expert advice, and the latest trends in the dynamic realm of online marketing.

    We are committed to providing valuable, reliable, and up-to-date information to help you navigate the digital landscape successfully. Whether you are a seasoned professional or just starting, YGLuk is your one-stop destination for all things digital marketing and influencer marketing.

    Top Insights

    A New Funnel for Influencer Lead Gen

    July 4, 2025

    Influencer Gathering on a Tennis Court Fuels Buzz Around ASOS Nike Collection

    July 4, 2025

    15+ LinkedIn Post Ideas Examples to Inspire Your Content Strategy

    July 4, 2025
    Categories
    • Content Marketing
    • Digital Marketing
    • Digital Marketing Tips
    • Email Marketing
    • Influencer Marketing
    • Marketing Trends
    • SEM
    • SEO
    • TikTok Academy
    • Tiktok Specialist
    • Website Traffic
    Copyright © 2024 Ygluk.com All Rights Reserved.

    Type above and press Enter to search. Press Esc to cancel.