CVE-2025-10476 – WP Fastest Cache

CVE ID : CVE-2025-10476

Published : Nov. 27, 2025, 11:15 a.m. | 1 hour, 8 minutes ago

Description : The WP Fastest Cache plugin for WordPress is vulnerable to unauthorized modification of data due to a missing capability check on the wpfc_db_fix_callback() function in all versions up to, and including, 1.4.0. This makes it possible for authenticated attackers, with Subscriber-level access and above, to initiate several database fix actions. This only affects sites with premium activated.

Severity: 4.3 | MEDIUM

Visit the link for more details, such as CVSS details, affected products, timeline, and more… 

نوشته های مشابه

CVE-2025-54057 – Apache SkyWalking: Stored XSS vulnerability

CVE-2025-59302 – Apache CloudStack: Potential remote code execution on Javascript engine defined rules

CVE-2025-59454 – Apache CloudStack: Lack of user permission validation leading to data leak for few APIs

CVE-2025-59890 – Eaton Galileo Local File Inclusion Vulnerability