CVE-2026-2128— Breeze Cache <= 2.5.2 - Unauthenticated Exposure of Sensitive Information to an Unauthorized Actor via Crafted Login Cookie
Affected Version Matrix 1
| Vendor | Product | Version Range | Status |
|---|---|---|---|
| cloudways | Breeze Cache | ≤ 2.5.2 | affected |
Get alerts for future matching vulnerabilitiesLog in to subscribe
I. Basic Information for CVE-2026-2128
Vulnerability Information
Have questions about the vulnerability? See if Shenlong's analysis helps!
View Shenlong Deep Dive ↗ Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
Breeze Cache <= 2.5.2 - Unauthenticated Exposure of Sensitive Information to an Unauthorized Actor via Crafted Login Cookie
Source: NVD (National Vulnerability Database)
Vulnerability Description
The Breeze plugin for WordPress is vulnerable to Exposure of Sensitive Information to an Unauthorized Actor in all versions up to, and including, 2.5.2 This is due to improper verification of the `wordpress_logged_in_` cookie in the `inc/cache/execute-cache.php` file when the "Cache Logged-in Users" setting is enabled. The plugin parses the username directly from the cookie value (e.g., `username|hash`) using `substr()` to retrieve the corresponding cache file but fails to verify the session's cryptographic signature or validity with WordPress core. This makes it possible for unauthenticated attackers to supply a crafted cookie (e.g., `wordpress_logged_in_fake=admin|fake`) to trick the plugin into serving the cached HTML content generated for an administrator, leading to the disclosure of sensitive information such as private posts (including their full content), the Admin Bar, WordPress nonces, and other data visible only to logged-in administrators or other users.
Source: NVD (National Vulnerability Database)
CVSS Information
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:N
Source: NVD (National Vulnerability Database)
Vulnerability Type
信息暴露
Source: NVD (National Vulnerability Database)
Affected Products
| Vendor | Product | Affected Versions | CPE | Subscribe |
|---|---|---|---|---|
| cloudways | Breeze Cache | 0 ~ 2.5.2 | - |
II. Public POCs for CVE-2026-2128
| # | POC Description | Source Link | Shenlong Link |
|---|
AI-Generated POCPremium
No public POC found.
Login to generate AI POCIII. Intelligence Information for CVE-2026-2128
请登录查看更多情报信息。
Patches & Fixes for CVE-2026-2128 (4)
Other References for CVE-2026-2128 (1)
IV. Related Vulnerabilities
Same vendor: cloudways
- CVE-2026-3844
Breeze Cache <= 2.4.4 - Unauthenticated Arbitrary File Uploa - CVE-2025-13864
Breeze – WordPress Cache Plugin <= 2.2.21 - Missing Authoriz - CVE-2025-69364
WordPress Breeze plugin <= 2.2.21 - Broken Access Control vu - CVE-2025-23999
WordPress Breeze plugin <= 2.2.13 - Broken Access Control vu - CVE-2024-50422
WordPress Breeze plugin <= 2.1.14 - Broken Access Control vu
Same weakness: CWE-200
- CVE-2026-8995
Poll Maker by AYS <= 6.3.7 - Authenticated (Subscriber+) Sen - CVE-2026-47136
RustFS: Unauthenticated RustFS console license endpoint expo - CVE-2026-45332
Automad Broken Access Control: unauthenticated exposure of a - CVE-2026-7526
PDF Embedder <= 4.9.3 - Authenticated (Contributor+) Informa - CVE-2026-42878
FacturaScripts: Unauthenticated phpinfo() Disclosure via Ins
V. Comments for CVE-2026-2128
No comments yet