Optimole Super Page Cache vulnerabilities

CVE-2026-1843 [HIGH] CWE-79 CVE-2026-1843: The Super Page Cache plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the Activ The Super Page Cache plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the Activity Log in all versions up to, and including, 5.2.2 due to insufficient input sanitization and output escaping. This makes it possible for unauthenticated attackers to inject arbitrary web scripts in pages that will execute whenever a user accesses an inje

CVE-2024-27968 [MEDIUM] CWE-352 CVE-2024-27968: Cross-Site Request Forgery (CSRF) vulnerability in Optimole Super Page Cache for Cloudflare allows S Cross-Site Request Forgery (CSRF) vulnerability in Optimole Super Page Cache for Cloudflare allows Stored XSS.This issue affects Super Page Cache for Cloudflare: from n/a through 4.7.5.

CVE-2024-1047 [MEDIUM] CWE-862 CVE-2024-1047: Multiple plugins and/or themes for WordPress with the ThemeIsle SDK are vulnerable to unauthorized m Multiple plugins and/or themes for WordPress with the ThemeIsle SDK are vulnerable to unauthorized modification of data due to a missing capability check on the register_reference() function in various versions. This makes it possible for unauthenticated attackers to update options values that allow ThemeIsle to track promotional activities via utm_so