CVE-2026-23694
CSRF Vulnerability in Aruba HiSpeed Cache WordPress Plugin
Publication date: 2026-02-23
Last updated on: 2026-02-23
Assigner: VulnCheck
Description
Description
CVSS Scores
EPSS Scores
| Probability: | |
| Percentile: |
Meta Information
Affected Vendors & Products
| Vendor | Product | Version / Range |
|---|---|---|
| aruba | aruba_hispeed_cache | to 3.0.5 (exc) |
Helpful Resources
Exploitability
| CWE ID | Description |
|---|---|
| CWE-352 | The web application does not, or cannot, sufficiently verify whether a request was intentionally provided by the user who sent the request, which could have originated from an unauthorized actor. |
Attack-Flow Graph
AI Powered Q&A
Can you explain this vulnerability to me?
CVE-2026-23694 is a cross-site request forgery (CSRF) vulnerability in the Aruba HiSpeed Cache WordPress plugin versions prior to 3.0.5. The vulnerability affects multiple administrative AJAX actions where the plugin performs authentication and capability checks but fails to verify a WordPress nonce for state-changing requests. This means an attacker can trick a logged-in administrator into visiting a malicious webpage that sends forged requests to the plugin's admin-ajax.php handlers. As a result, the attacker can cause unauthorized changes such as resetting plugin settings, toggling the WordPress WP_DEBUG configuration, or modifying cache purging behavior without the administrator's consent.
How can this vulnerability impact me? :
This vulnerability can lead to unauthorized changes in your WordPress site's caching plugin settings if an attacker tricks an administrator into visiting a malicious site. Specifically, it can cause the plugin's settings to be reset, debugging mode to be toggled on or off, or cache purging behavior to be altered without your knowledge or approval. These unauthorized changes can disrupt website performance, potentially expose debugging information, or affect how cached content is managed, which may degrade site functionality or security.
How does this vulnerability affect compliance with common standards and regulations (like GDPR, HIPAA)?:
I don't know
How can this vulnerability be detected on my network or system? Can you suggest some commands?
I don't know
What immediate steps should I take to mitigate this vulnerability?
To mitigate the CVE-2026-23694 vulnerability in the Aruba HiSpeed Cache WordPress plugin, you should immediately update the plugin to version 3.0.5 or later, as versions prior to 3.0.5 contain the cross-site request forgery (CSRF) vulnerability.
Additionally, consider restricting access to administrative AJAX actions and ensure that WordPress nonces are properly verified for state-changing requests to prevent unauthorized actions.
If updating immediately is not possible, temporarily disabling the plugin or limiting administrator access to trusted users can reduce the risk of exploitation.