VYPR

Speed Booster Pack

by WordPress

CVEs (2)

  • CVE-2021-25023HigJan 3, 2022
    risk 0.47cvss 7.2epss 0.01

    The Speed Booster Pack ⚡ PageSpeed Optimization Suite WordPress plugin before 4.3.3.1 does not escape the sbp_convert_table_name parameter before using it in a SQL statement to convert the related table, leading to an SQL injection

  • CVE-2021-24430HigAug 2, 2021
    risk 0.47cvss 7.2epss 0.02

    The Speed Booster Pack ⚡ PageSpeed Optimization Suite WordPress plugin before 4.2.0 did not validate its caching_exclude_urls and caching_include_query_strings settings before outputting them in a PHP file, which could lead to RCE