CVE-2025-10583

CVSS v3.1

3.5

Low

Vector

AV:N/AC:H/PR:L/UI:N/S:C/C:N/I:L/A:N

Name of the Vulnerable Software and Affected Versions WP Fastest Cache versions up to and including 1.7.4

Description The WP Fastest Cache plugin for WordPress is susceptible to Server-Side Request Forgery (SSRF) via the get server time ajax request AJAX action. This allows authenticated attackers with Subscriber-level access or higher to make web requests to arbitrary locations originating from the web application. This can be used to query and modify information from internal services.

Recommendations Update WP Fastest Cache to a version newer than 1.7.4.

Exploit

Fix

Missing Authorization

Found an issue in the description? Have something to add? Feel free to write us 👾

dbugs@ptsecurity.com

Weakness Enumeration

CWE-862

Related Identifiers

CVE-2025-10583

Affected Products

Wp Fastest Cache

CVE-2025-10583

Weakness Enumeration

Related Identifiers

Affected Products

References · 7