CVE-2023-45000
WordPress LiteSpeed Cache plugin <= 5.7 - Unauthenticated Broken Access Control on API vulnerabilityMissing Authorization vulnerability in LiteSpeed Technologies LiteSpeed Cache.This issue affects LiteSpeed Cache: from n/a through 5.7.
We have discovered 61,830 live websites that are affected by CVE-2023-45000.
Affected Software
| Product |  Litespeed Cache |
| Category | Cache Tools |
| Vulnerable Domains | 61,830 live websites (6.60% of Litespeed Cache install base) |
| Vulnerable Versions |
|
| Vulnerable Versions Count | 114 versions ( 79% of all versions) |
Common Weakness Enumeration
CWE-862 Missing AuthorizationDetails
- Published - Apr 16, 2024
- Updated - Aug 2, 2024
Credits
- Rafie Muhammad (Patchstack) (finder)
CVE References
CWE References
CWE
Website Distribution by Country
Number of websites using CVE-2023-45000 United States | 16,747 websites |
 Turkey | 4,968 websites |
 Poland | 4,158 websites |
 GB | 3,576 websites |
 Canada | 2,990 websites |
 Spain | 2,973 websites |
 France | 2,302 websites |
 Germany | 1,951 websites |
 Romania | 1,909 websites |
 Vietnam | 1,788 websites |
Website Distribution by TLD
Number of websites using CVE-2023-45000| .com | 28,605 websites |
| .pl | 3,034 websites |
| .org | 2,587 websites |
| .net | 1,788 websites |
| .co.uk | 1,773 websites |
| .com.br | 1,372 websites |
| .ca | 1,139 websites |
| .es | 1,122 websites |
| .com.au | 999 websites |
| .de | 688 websites |
Vulnerable Versions
Vulnerable versions are highlighted in redWebsites affected by CVE-2023-45000
Top websites that are affected by CVE-2023-45000. Please click on the "Contact us" link to get more information.| Domain | Country | Rank | Contacts |
|---|---|---|---|
| *******.fm | *,*** | ||
| ****.org | United States | **,*** | |
| *********.com | Germany | **,*** | |
| ******.com | United States | **,*** | |
| ****************.ai | United States | **,*** | |
| **************.org | United States | **,*** | |
| ****.******.com | United States | **,*** | |
| ***********.net | Turkey | **,*** | |
| *********************.com | United States | **,*** | |
| ***************.com | United States | **,*** |
FAQ
CVE-2023-45000 is Missing Authorization in Litespeed Cache
A total of 61,830 websites have been identified as vulnerable to CVE-2023-45000, based on global website indexing conducted by WebTechSurvey.
The Litespeed Cache is affected by the CVE-2023-45000 vulnerability.
Litespeed Cache versions up to and including 5.7 are vulnerable to CVE-2023-45000.