BugWP logo BugWP
Back to Community
Home / Community / PluginLitespeed cache

Resolving the 'Vulnerabilities Have Been Discovered' Warning in LiteSpeed Cache

21 threads Sep 7, 2025 PluginLitespeed cache

Content

Many users of the LiteSpeed Cache plugin have recently encountered a confusing and persistent warning message in their WordPress admin area. The alert states: 'Vulnerabilities have been discovered in your installed version of the LiteSpeed Cache plugin. Please update to the latest version (v6.5+) as soon as possible.'

The confusion arises because this warning often appears even when you have already installed the latest version of the plugin. This article explains why this happens and provides clear steps to resolve it.

Why This Warning Appears Incorrectly

Based on community reports and discussions, this is a known bug within the plugin's notification system. The warning mechanism was designed to alert users running outdated, vulnerable versions. However, a flaw causes it to trigger incorrectly, failing to recognize that a secure, updated version (like v6.5.4 or v7.2) is already installed. The LiteSpeed Cache team has acknowledged this as a false positive.

How to Fix the False Warning

If you have confirmed your plugin is updated to a recent version (v6.5 or higher), you can safely dismiss this message. Here’s how:

  1. Dismiss the Notice: Simply click the 'X' or 'Dismiss' button on the warning message itself. For most users, this will be a permanent fix.
  2. If the Warning Returns: Some users report the message reappears after performing actions like flushing the cache. If this happens, a deeper configuration issue might be present. The recommended course of action is to generate a debug report for further investigation:
    • Navigate to LiteSpeed Cache -> Toolbox -> Report.
    • Click 'Send to LiteSpeed'.
    • Note the generated report number. You can use this number if you need to seek help from the community.
  3. Check Object Cache: In some threads, enabling Object Cache was mentioned as a potential factor in the warning's recurrence. If you have this feature enabled, you may want to check its configuration.

Important Note on Actual Security

It is crucial to distinguish this false warning from a real security alert. If your plugin is genuinely outdated (e.g., you are running a version below v5.7 or v6.1), the warning is legitimate and you should update immediately to patch known vulnerabilities. This bug only affects users who are already on a secure, updated version.

By following these steps, you can clear your admin dashboard of this erroneous alert and continue using the plugin with confidence.

Related Support Threads Support