Vulnerabilities and security researches forspeedycache speedycache

Mar 18, 2026

PSC, Research URL: PSC-2026-64630
Home page URL: Security reports for SpeedyCache – Cache, Optimization, Performance
Application: SpeedyCache – Cache, Optimization, Performance
Date: Mar 18, 2026
Research Description: SpeedyCache – Cache, Optimization, Performance (v1.3.7) is a WordPress performance plugin designed to improve website speed through caching, minification, compression, and resource optimization. By generating static cache files and optimizing frontend assets, the plugin reduces server load and accelerates page delivery. Built for websites running on WordPress, SpeedyCache provides a comprehensive optimization toolkit while maintaining compatibility with shared hosting environments and CDN integrations. Given its deep interaction with caching layers, file generation, HTTP headers, and resource processing, a detailed security audit was conducted.
Affected versions: Min 1.3.8, max 1.3.8.
Status: SAFE & CERTIFIED

Aug 20, 2024

CVE, Research URL: CVE-2024-43299
Home page URL: Security reports for SpeedyCache – Cache, Optimization, Performance
Application: SpeedyCache – Cache, Optimization, Performance
Date: Aug 27, 2024
Research Description: Cross-Site Request Forgery (CSRF) vulnerability in Softaculous Team SpeedyCache.This issue affects SpeedyCache: from n/a through 1.1.8.
Affected versions: max 1.1.9.
Status: vulnerable

Jun 06, 2024

CVE, Research URL: CVE-2023-6598
Home page URL: Security reports for SpeedyCache – Cache, Optimization, Performance
Application: SpeedyCache – Cache, Optimization, Performance
Date: Jan 11, 2024
Research Description: The SpeedyCache plugin for WordPress is vulnerable to unauthorized modification of data due to a missing capability check on the speedycache_save_varniship, speedycache_img_update_settings, speedycache_preloading_add_settings, and speedycache_preloading_delete_resource functions in all versions up to, and including, 1.1.3. This makes it possible for authenticated attackers, with subscriber-level access and above, to update plugin options.
Affected versions: max 1.1.4.
Status: vulnerable

CVE, Research URL: a4ef16792ad0d4324e229e95f7c2ea4019d4f925
Home page URL: Security reports for SpeedyCache – Cache, Optimization, Performance
Application: SpeedyCache – Cache, Optimization, Performance
Date: Dec 01, 2023
Research Description: SpeedyCache – Cache, Optimization, Performance [speedycache] < 1.1.3 SpeedyCache <= 1.1.2 - Missing Authorization via speedycache_create_test_cache The SpeedyCache – Cache, Optimization, Performance plugin for WordPress is vulnerable to unauthorized modification of data due to a missing capability check on the speedycache_create_test_cache function in all versions up to, and including, 1.1.2. This makes it possible for authenticated attackers with subscriber-level access or higher to create a sample cache.
Affected versions: max 1.1.3.
Status: vulnerable

CVE, Research URL: CVE-2023-49746
Home page URL: Security reports for SpeedyCache – Cache, Optimization, Performance
Application: SpeedyCache – Cache, Optimization, Performance
Date: Dec 07, 2023
Research Description: Server-Side Request Forgery (SSRF) vulnerability in Softaculous Team SpeedyCache – Cache, Optimization, Performance.This issue affects SpeedyCache – Cache, Optimization, Performance: from n/a through 1.1.2.
Affected versions: max 1.1.3.
Status: vulnerable