High severity8.8NVD Advisory· Published Sep 19, 2017· Updated Jun 17, 2026
CVE-2015-4089
CVE-2015-4089
Description
Multiple cross-site request forgery (CSRF) vulnerabilities in the optionsPageRequest function in admin.php in WP Fastest Cache plugin before 0.8.3.5 for WordPress allow remote attackers to hijack the authentication of unspecified victims for requests that call the (1) saveOption, (2) deleteCache, (3) deleteCssAndJsCache, or (4) addCacheTimeout method via the wpFastestCachePage parameter in the WpFastestCacheOptions/ page.
AI Insight
LLM-synthesized narrative grounded in this CVE's description and references.
Affected products
2- cpe:2.3:a:wpfastestcache:wp_fastest_cache:*:*:*:*:*:wordpress:*:*Range: <=0.8.3.4
- Range: <0.8.3.5
Patches
Vulnerability mechanics
References
3- www.openwall.com/lists/oss-security/2015/05/26/20nvdMailing ListThird Party Advisory
- wordpress.org/plugins/wp-fastest-cache/nvdThird Party Advisory
- wpvulndb.com/vulnerabilities/9756nvd
News mentions
0No linked articles in our index yet.