WordPress Clearfy Cache plugin <= 2.0.4 - Reflected Cross-Site Scripting (XSS) vulnerability
Vulnerable versions
<= 2.0.4
PSID
f16f372e345d
CVE ID
N/A
Classification
Cross Site Scripting (XSS)
OWASP Top 10
A7: Cross-Site Scripting (XSS)
Required privilege
Publicly disclosed
2022-06-14
Patchstack vPatch available since
09.12.2021
Details
Reflected Cross-Site Scripting (XSS) vulnerability discovered by WPScanTeam in WordPress Clearfy Cache plugin (versions <= 2.0.4).
Solution
Update the WordPress Clearfy Cache plugin to the latest available version (at least 2.0.5).
References
Vulnerability details