VYPR

HiSpeed Cache

by WordPress

CVEs (2)

  • CVE-2025-11725MedFeb 19, 2026
    risk 0.42cvss 6.5epss 0.00

    The Aruba HiSpeed Cache plugin for WordPress is vulnerable to unauthorized modification of data due to a missing capability checks on the multiple functions in all versions up to, and including, 3.0.2. This makes it possible for unauthenticated attackers to modify plugin's…

  • CVE-2025-11706MedFeb 19, 2026
    risk 0.40cvss 6.1epss 0.00

    The Aruba HiSpeed Cache plugin for WordPress is vulnerable to Reflected Cross-Site Scripting via the dbstatus parameter in all versions up to, and including, 3.0.2 due to insufficient input sanitization and output escaping. This makes it possible for unauthenticated attackers to…