Exploitation of the flaw, which stems from LiteSpeed Cache’s debug logging functionality, could be conducted by attackers with ‘/wp-content/debug.log’ file access to exfiltrate users’ session cookies, spoof admin users, and takeover websites.
Article Link: Widespread WordPress site takeovers likely with critical LiteSpeed Cache bug | SC Media
1 post – 1 participant
Exploitation of the flaw, which stems from LiteSpeed Cache’s debug logging functionality, could be conducted by attackers with ‘/wp-content/debug.log’ file access to exfiltrate users’ session cookies, spoof admin users, and takeover websites.
Article Link: Widespread WordPress site takeovers likely with critical LiteSpeed Cache bug | SC Media
1 post – 1 participant
Read full topic