Critical severity9.8NVD Advisory· Published Aug 21, 2024· Updated Apr 29, 2026
CVE-2024-28000
CVE-2024-28000
Description
Incorrect Privilege Assignment vulnerability in LiteSpeed Technologies LiteSpeed Cache litespeed-cache.This issue affects LiteSpeed Cache: from n/a through <= 6.3.0.1.
AI Insight
LLM-synthesized narrative grounded in this CVE's description and references.
Affected products
2cpe:2.3:a:litespeedtech:litespeed_cache:*:*:*:*:*:wordpress:*:*+ 1 more
- cpe:2.3:a:litespeedtech:litespeed_cache:*:*:*:*:*:wordpress:*:*range: >=1.9,<6.4
- (no CPE)range: <=6.3.0.1
Patches
Vulnerability mechanics
References
4- packetstorm.news/files/id/200819/nvd
- patchstack.com/database/Wordpress/Plugin/litespeed-cache/vulnerability/wordpress-litespeed-cache-plugin-6-3-0-1-unauthenticated-privilege-escalation-vulnerabilitynvd
- thehackernews.com/2024/08/critical-flaw-in-wordpress-litespeed.htmlnvd
- www.exploit-db.com/exploits/52328nvd
News mentions
0No linked articles in our index yet.