Vulnerabilidades en LiteSpeed Technologies
18 resultadosCVE-2024-44000CRITICALWordPress LiteSpeed Cache plugin < 6.5.0.1 - Unauthenticated Account Takeover via Cookie Leak vulnerabilityEPSS 83.2%CVE-2024-28000CRITICALWordPress LiteSpeed Cache plugin <= 6.3.0.1 - Unauthenticated Privilege Escalation vulnerabilityEPSS 67.9%CVE-2023-40000HIGHWordPress LiteSpeed Cache plugin <= 5.7 - Unauthenticated Site Wide Stored XSS vulnerabilityEPSS 54.9%CVE-2026-48172CRITICALLiteSpeed User-End cPanel Plugin before 2.4.5 allows privilege escalation (possibly to root), as exploited in the wild in May 2026. DetectioEPSS 18.9%KEVCVE-2022-0073HIGHAuthenticated Remote Code Execution in OpenLiteSpeed Web ServerEPSS 8.7%CVE-2026-31386HIGHOpenLiteSpeed and LSWS Enterprise provided by LiteSpeed Technologies contain an OS command injection vulnerability. An arbitrary OS command EPSS 1.5%CVE-2024-47374HIGHWordPress LiteSpeed Cache plugin <= 6.5.0.2 - Cross Site Scripting (XSS) vulnerabilityEPSS 1.4%CVE-2026-54420HIGHLiteSpeed cPanel plugin before 2.4.8 (as distributed in LiteSpeed WHM PlugIn before 5.3.2.0) mishandles symlinks provided by a user with FTPEPSS 1.3%KEVCVE-2022-0074HIGHPrivilege Escalation in OpenLiteSpeed Web ServerEPSS 1.2%CVE-2022-0072MEDIUMDirectory Traversal in OpenLiteSpeed Web ServerEPSS 1.0%CVE-2024-50550HIGHWordPress LiteSpeed Cache plugin <= 6.5.1 - Privilege Escalation vulnerabilityEPSS 0.9%CVE-2024-47637HIGHWordPress LiteSpeed Cache plugin <= 6.4.1 - Path Traversal vulnerabilityEPSS 0.6%CVE-2023-45000HIGHWordPress LiteSpeed Cache plugin <= 5.7 - Unauthenticated Broken Access Control on API vulnerabilityEPSS 0.4%CVE-2022-46800MEDIUMWordPress LiteSpeed Cache Plugin <= 5.3 is vulnerable to Cross Site Request Forgery (CSRF)EPSS 0.3%CVE-2024-47373MEDIUMWordPress LiteSpeed Cache plugin <= 6.5.0.2 - Cross Site Scripting (XSS) vulnerabilityEPSS 0.2%CVE-2021-47855MEDIUMOpenlitespeed 1.7.9 - 'Notes' Stored Cross-Site ScriptingEPSS 0.2%CVE-2024-51915MEDIUMWordPress LiteSpeed Cache plugin <= 6.5.2 - Cross Site Scripting (XSS) vulnerabilityEPSS 0.2%CVE-2025-47437MEDIUMWordPress LiteSpeed Cache plugin <= 7.0.1 - Server Side Request Forgery (SSRF) vulnerabilityEPSS 0.2%