CVE-2023-1938

Name of the Vulnerable Software and Affected Versions WP Fastest Cache versions prior to 1.1.5

Description The issue is related to the lack of a CSRF check in an AJAX action and insufficient validation of user input before using it in the wp remote get() function, leading to a Blind SSRF issue.

Recommendations For versions prior to 1.1.5, update to version 1.1.5 or later to resolve the issue. As a temporary workaround, consider restricting access to the AJAX action to minimize the risk of exploitation.