[{"data":1,"prerenderedAt":-1},["ShallowReactive",2],{"$fng7XJRQZ9w_1gJyIPNGwk-R2fnE6sJJectNb6FqTz9M":3},{"slug":4,"name":5,"version":6,"author":7,"author_profile":8,"description":9,"short_description":10,"active_installs":11,"downloaded":12,"rating":13,"num_ratings":13,"last_updated":14,"tested_up_to":15,"requires_at_least":16,"requires_php":17,"tags":18,"homepage":24,"download_link":25,"security_score":26,"vuln_count":27,"unpatched_count":27,"last_vuln_date":28,"fetched_at":29,"vulnerabilities":30,"developer":56,"crawl_stats":36,"alternatives":62,"analysis":162,"fingerprints":271},"cache-control-by-cacholong","Cache control by Cacholong","5.4.1","Preliot","https:\u002F\u002Fprofiles.wordpress.org\u002Fpreliot\u002F","\u003Cp>“Cache control by Cacholong” plugin automates purging of Nginx Pagespeed cache and Nginx FastCGI cache on your Nginx server(s). It is a backend plugin that is able to:\u003C\u002Fp>\n\u003Cul>\n\u003Cli>Purge Nginx Pagespeed cache and\u002For Nginx FastCGI cache.\u003C\u002Fli>\n\u003Cli>Purge cache automatically, manually, with WordPress cronjobs and WP-CLI.\u003C\u002Fli>\n\u003Cli>Purge caches on one or more servers (See hosts.json section for more details).\u003C\u002Fli>\n\u003Cli>Use commandline (WP-CLI) to purge caches or reset to factory settings.\u003C\u002Fli>\n\u003Cli>Remove id tag from stylesheet link tags, in order to allow Nginx Pagespeed to combine stylesheets.\u003C\u002Fli>\n\u003Cli>Allow purging of other cached items (see Settings > Cache control).\u003C\u002Fli>\n\u003Cli>Inform user of purge status.\u003C\u002Fli>\n\u003Cli>Support for single site and network sites\u003C\u002Fli>\n\u003Cli>Support for WP-CLI\u003C\u002Fli>\n\u003Cli>Support for WPML (including language negotiation type domain)\u003C\u002Fli>\n\u003C\u002Ful>\n\u003Ch4>When will it purge?\u003C\u002Fh4>\n\u003Cp>This plugin will work with default and custom post types. It will purge on a save, regular update, quick edit update, slug change, delete and undelete. The user is informed with one or more messages.\u003Cbr \u002F>\nThere are a few caveats:\u003C\u002Fp>\n\u003Cul>\n\u003Cli>When a user is using the Gutenberg editor, purge messages will not be displayed.\u003C\u002Fli>\n\u003Cli>When the user uses “Quick edit” and “Updates” the post, no messages will be displayed, because there’s no page refresh. Those messages will be shown on the next request. \u003C\u002Fli>\n\u003C\u002Ful>\n\u003Cp>It is possible to purge with WordPress cronjobs. Adjust the ‘Cronjob settings’ to perform a daily purge of caches.\u003C\u002Fp>\n\u003Cp>You can also purge items manually. Go to the WordPress dashboard and navigate to:\u003C\u002Fp>\n\u003Cul>\n\u003Cli>Settings > Cache control > purge single item\u003C\u002Fli>\n\u003Cli>Settings > Cache control > purge all caches\u003C\u002Fli>\n\u003Cli>Admin Toolbar > purge all caches\u003C\u002Fli>\n\u003C\u002Ful>\n\u003Ch4>Settings\u003C\u002Fh4>\n\u003Cul>\n\u003Cli>File with hosts (JSON):                 File with information about one or more hosts for this WordPress installation. See hosts.json section for more details. \u003C\u002Fli>\n\u003Cli>Pagespeed optimized CSS:                Remove ID tag from all WordPress stylesheet link tags to improve Nginx Pagespeed caching. Will only work on frontend.\u003C\u002Fli>\n\u003Cli>Purge settings default post types:      Select one or more options when purging a default post type. Possible to purge post url (default), home page, all connected WordPress categories or all caches.\u003C\u002Fli>\n\u003Cli>Purge settings default custom type(s):  Select one or more options when purging a custom post type. Possible to purge post url (default), home page, all connected WordPress categories or all caches.\u003C\u002Fli>\n\u003C\u002Ful>\n\u003Ch4>Cronjob Settings\u003C\u002Fh4>\n\u003Cul>\n\u003Cli>Cronjob purging:                        Enable or disable cronjob purging. \u003C\u002Fli>\n\u003Cli>Cronjob time of each day:               Enter HH:MM in 24 hour notation for cronjob time of day. Will fallback to 00:00 when wrong format is given.\u003C\u002Fli>\n\u003Cli>Purge caches                            Select caches to purge on given cronjob time. \u003C\u002Fli>\n\u003C\u002Ful>\n\u003Ch4>hosts.json\u003C\u002Fh4>\n\u003Cp>Hosts.json is a JSON file with information about one or more servers for this WordPress installation. Remember that this file must contain information about all servers, including the\u003Cbr \u002F>\none with this plugin. Default path is: wp-content\u002Fuploads\u002Fcacholong-cache-control\u002Fhosts.json.\u003C\u002Fp>\n\u003Cp>Here is an example of a hosts.json file:\u003C\u002Fp>\n\u003Cpre>\u003Ccode>{\"servers\":\n    [\n        {\"name\": \"server1\", \"ip\": \"127.0.0.1\", \"pagespeed\": true, \"fastcgi\": false},\n        {\"name\": \"server2\", \"ip\": \"127.0.0.2\", \"pagespeed\": false, \"fastcgi\": true},\n    ]\n}\n\u003C\u002Fcode>\u003C\u002Fpre>\n\u003Cp>Each line contains information about one server. Parameters:\u003C\u002Fp>\n\u003Cul>\n\u003Cli>\n\u003Cp>name (string)\u003Cbr \u002F>\nName of host, something to identify this server.\u003C\u002Fp>\n\u003C\u002Fli>\n\u003Cli>\n\u003Cp>ip (string)\u003Cbr \u002F>\nIP address of server or full url. Format: scheme:\u002F\u002Fhost:port\u002Fpath\u003C\u002Fp>\n\u003C\u002Fli>\n\u003Cli>\n\u003Cp>pagespeed (bool)\u003Cbr \u002F>\nServer uses Nginx Pagespeed (true) or not (false)\u003C\u002Fp>\n\u003C\u002Fli>\n\u003Cli>\n\u003Cp>fastcgi (bool)\u003Cbr \u002F>\nServer user Nginx FastCGI (true) or not (false)\u003C\u002Fp>\n\u003C\u002Fli>\n\u003C\u002Ful>\n\u003Cp>When there is no hosts.json or the path is invalid, this plugin assumes the following:\u003C\u002Fp>\n\u003Cpre>\u003Ccode>{\"servers\":\n    [\n        {\"name\": \"localhost\", \"ip\": \"127.0.0.1\", \"pagespeed\": true, \"fastcgi\": true}\n    ]\n}\n\u003C\u002Fcode>\u003C\u002Fpre>\n\u003Ch4>How does it work\u003C\u002Fh4>\n\u003Cp>“Cache control by Cacholong” empties partial or full cache for Nginx Pagespeed and FastCGI cache. WordPress HTTP API is used to make (post) request to\u003Cbr \u002F>\nspecific urls to trigger purges. Based on the http header responses this plugin determines if a purge is successful or not. The user is informed with messages, which are loaded after a purge and page refresh.\u003C\u002Fp>\n\u003Cp>There are several settings to tweak purging, see Settings > Cache control.\u003C\u002Fp>\n\u003Ch4>WP-CLI\u003C\u002Fh4>\n\u003Cp>There are several commands available for the commandline with wp-cli. Commands generate text output which can be suppressed with –quiet. When an error occurs, text will always be displayed.\u003C\u002Fp>\n\u003Ch4>WP-CLI exit codes\u003C\u002Fh4>\n\u003Cp>Exit codes are 0 (no errors) or 1 (generic error).\u003C\u002Fp>\n\u003Ch4>WP-CLI examples\u003C\u002Fh4>\n\u003Cp>Purge command with all arguments:\u003C\u002Fp>\n\u003Cpre>\u003Ccode>wp cacholong_cc purge [--cache=\u003Ccache>] [--ips=\u003Cips>]\n\u003C\u002Fcode>\u003C\u002Fpre>\n\u003Cp>Purge Nginx FastCGI:\u003C\u002Fp>\n\u003Cpre>\u003Ccode>wp cacholong_cc purge --cache=fastcgi\n\u003C\u002Fcode>\u003C\u002Fpre>\n\u003Cp>Purge Nginx Pagespeed:\u003C\u002Fp>\n\u003Cpre>\u003Ccode>wp cacholong_cc purge --cache=pagespeed\n\u003C\u002Fcode>\u003C\u002Fpre>\n\u003Cp>Purge all caches:\u003C\u002Fp>\n\u003Cpre>\u003Ccode>wp cacholong_cc purge --cache=all\nwp cacholong_cc purge\n\u003C\u002Fcode>\u003C\u002Fpre>\n\u003Cp>Purge Nginx Pagespeed cache for ip address 127.0.0.1 and 127.0.0.2:\u003C\u002Fp>\n\u003Cpre>\u003Ccode>wp cacholong_cc purge --cache=pagespeed --ips=127.0.0.1,127.0.0.2\n\u003C\u002Fcode>\u003C\u002Fpre>\n\u003Cp>Purge all caches for ip address 127.0.0.1 and 127.0.0.2:\u003C\u002Fp>\n\u003Cpre>\u003Ccode>wp cacholong_cc purge --ips=127.0.0.1,127.0.0.2\n\u003C\u002Fcode>\u003C\u002Fpre>\n\u003Cp>Factory reset options for given site_id or current blog if no site_id is given:\u003C\u002Fp>\n\u003Cpre>\u003Ccode>wp cacholong_cc factory_reset [--site_id=site_id]\n\u003C\u002Fcode>\u003C\u002Fpre>\n\u003Ch4>Debug\u003C\u002Fh4>\n\u003Cp>Plugin will log basic purge information when WP_DEBUG is true (can be set in wp-config.php). Logs information in file wp-content\u002Fcacholong-cache-control.log.\u003Cbr \u002F>\nPlugin will log wp_remote_request details when CACHOLONG_CACHE_DEBUG_HTTP_API_REQUEST is true (can be set in wp-config.php). Logs information in file wp-content\u002Fcacholong-cache-control.log.\u003C\u002Fp>\n","“Cache control by Cacholong” is a cache control plugin for one or more Nginx servers.",500,6645,0,"2021-07-20T12:01:00.000Z","5.7.15","4.3.1","5.6",[19,20,21,22,23],"cache","cache-control","caching","cacholong","pagespeed","","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Fcache-control-by-cacholong.zip",43,2,"2025-04-01 00:00:00","2026-03-15T15:16:48.613Z",[31,45],{"id":32,"url_slug":33,"title":34,"description":35,"plugin_slug":4,"theme_slug":36,"affected_versions":37,"patched_in_version":36,"severity":38,"cvss_score":39,"cvss_vector":40,"vuln_type":41,"published_date":28,"updated_date":42,"references":43,"days_to_patch":36},"CVE-2025-31764","cache-control-by-cacholong-authenticated-administrator-stored-cross-site-scripting","Cache control by Cacholong \u003C= 5.4.1 - Authenticated (Administrator+) Stored Cross-Site Scripting","The Cache control by Cacholong plugin for WordPress is vulnerable to Stored Cross-Site Scripting in versions up to, and including, 5.4.1 due to insufficient input sanitization and output escaping. This makes it possible for authenticated attackers, with administrator-level access and above, to inject arbitrary web scripts in pages that will execute whenever a user accesses an injected page. This only impacts multi-site installations and installations where unfiltered_html has been disabled.",null,"\u003C=5.4.1","medium",5.5,"CVSS:3.1\u002FAV:N\u002FAC:L\u002FPR:H\u002FUI:N\u002FS:C\u002FC:L\u002FI:L\u002FA:N","Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting')","2025-04-08 18:46:56",[44],"https:\u002F\u002Fwww.wordfence.com\u002Fthreat-intel\u002Fvulnerabilities\u002Fid\u002F1f99a653-0ba2-48bc-a5be-a7e9ee10b5bd?source=api-prod",{"id":46,"url_slug":47,"title":48,"description":49,"plugin_slug":4,"theme_slug":36,"affected_versions":37,"patched_in_version":36,"severity":38,"cvss_score":50,"cvss_vector":51,"vuln_type":52,"published_date":28,"updated_date":53,"references":54,"days_to_patch":36},"CVE-2025-31763","cache-control-by-cacholong-cross-site-request-forgery","Cache control by Cacholong \u003C= 5.4.1 - Cross-Site Request Forgery","The Cache control by Cacholong plugin for WordPress is vulnerable to Cross-Site Request Forgery in all versions up to, and including, 5.4.1. This is due to missing or incorrect nonce validation on a function. This makes it possible for unauthenticated attackers to perform an unauthorized action granted they can trick a site administrator into performing an action such as clicking on a link.",4.3,"CVSS:3.1\u002FAV:N\u002FAC:L\u002FPR:N\u002FUI:R\u002FS:U\u002FC:N\u002FI:L\u002FA:N","Cross-Site Request Forgery (CSRF)","2025-04-08 18:47:17",[55],"https:\u002F\u002Fwww.wordfence.com\u002Fthreat-intel\u002Fvulnerabilities\u002Fid\u002Fdfbc304d-624d-4558-b69e-077ee0b8aef3?source=api-prod",{"slug":57,"display_name":7,"profile_url":8,"plugin_count":58,"total_installs":11,"avg_security_score":26,"avg_patch_time_days":59,"trust_score":60,"computed_at":61},"preliot",1,30,54,"2026-04-05T02:07:24.873Z",[63,83,101,118,142],{"slug":20,"name":64,"version":65,"author":66,"author_profile":67,"description":68,"short_description":69,"active_installs":70,"downloaded":71,"rating":72,"num_ratings":73,"last_updated":74,"tested_up_to":75,"requires_at_least":76,"requires_php":24,"tags":77,"homepage":80,"download_link":81,"security_score":82,"vuln_count":13,"unpatched_count":13,"last_vuln_date":36,"fetched_at":29},"Cache-Control","2.2.5","Dan","https:\u002F\u002Fprofiles.wordpress.org\u002Fgeekysoft\u002F","\u003Cp>Good caching policies is one of performance’s best friends, and it can be your new best friend too. Get friendly with intermediary and browser caches by taking control over your WordPress powered website’s HTTP \u003Ccode>Cache-Control\u003C\u002Fcode> headers.\u003C\u002Fp>\n\u003Cp>This is not a caching plugin in itself, but will enable you to leverage existing standard compliant caching systems better. You can set different policies for different kinds of pages to suite your website’s needs. The Cache-Control for WordPress plugin allows you to set different policies for shared\u002Fintermediary and private caches. The plugin sets some sensible defaults for a medium traffic blog that publishes an update or two per week.\u003C\u002Fp>\n\u003Cp>You can safely set long \u003Ccode>Cache-Control\u003C\u002Fcode> times as the \u003Ccode>max-age\u003C\u002Fcode> values is lowered automatically before a scheduled post is about to be published.\u003C\u002Fp>\n\u003Cp>Private pages (logged in users, the admin interface, etc.) will not be cached.\u003C\u002Fp>\n\u003Cp>The plugin has \u003Ca href=\"https:\u002F\u002Fwww.ctrl.blog\u002Fentry\u002Fwp-cache-control-documentation.html\" rel=\"nofollow ugc\">extensive documentation\u003C\u002Fa>.\u003C\u002Fp>\n","Configurable HTTP Cache-Control response headers for webpages generated by WordPress.",1000,98695,100,6,"2019-08-30T11:50:00.000Z","5.2.24","4.4.1",[20,21,78,79],"http","performance","https:\u002F\u002Fwww.ctrl.blog\u002Fentry\u002Fwordpress-cache-control-plugin.html","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Fcache-control.2.2.5.zip",85,{"slug":84,"name":85,"version":86,"author":87,"author_profile":88,"description":89,"short_description":90,"active_installs":91,"downloaded":92,"rating":13,"num_ratings":13,"last_updated":93,"tested_up_to":94,"requires_at_least":95,"requires_php":24,"tags":96,"homepage":99,"download_link":100,"security_score":82,"vuln_count":13,"unpatched_count":13,"last_vuln_date":36,"fetched_at":29},"simple-cache-killer","Simple Cache Killer","1.0.2","John Cummings","https:\u002F\u002Fprofiles.wordpress.org\u002Fjcummings1974\u002F","\u003Cp>** For Multisite\u002FNetwork Users **\u003C\u002Fp>\n\u003Cp>I wrote this plugin because of several situations I’ve run in to running a multisite network where I’ll want to include\u003Cbr \u002F>\ncaching for WordPress sites in most cases, but might need to exclude one of the sites on the network from that caching.\u003C\u002Fp>\n\u003Cp>By activating this plugin and checking the different caching options, requests to that sites pages\u002Fposts can be instructed\u003Cbr \u002F>\nnot to cache site content without disrupting the caching strategy in place for other sites.\u003C\u002Fp>\n\u003Cp>** For single site installations **\u003C\u002Fp>\n\u003Cp>This plugin will still be useful for single site installations where the site administrator may not have access to the web server\u003Cbr \u002F>\nto specify the types of HTTP caching headers that are returned on each request.  By allowing you to specify and rewrite the HTTP caching\u003Cbr \u002F>\nheaders at the site level, you’ll no longer need access to the web server in order to make sure visitors are always served fresh\u003Cbr \u002F>\ncontent.\u003C\u002Fp>\n\u003Cp>\u003Cstrong>Bug Reports or Feature Requests\u003C\u002Fstrong>\u003Cbr \u002F>\nhttps:\u002F\u002Ftrello.com\u002Fb\u002FzLViVgjx\u003C\u002Fp>\n\u003Cp>\u003Cstrong>Follow me on Twitter\u003C\u002Fstrong>\u003Cbr \u002F>\nhttps:\u002F\u002Ftwitter.com\u002Fjcummings1974\u003C\u002Fp>\n","Allows users to specify that requests to their content not be cached in any way, easily from within the Wordpress admin.",10,2200,"2014-09-08T16:51:00.000Z","4.0.38","3.0.1",[19,20,21,97,98],"meta-http-equiv","pragma-no-cache","http:\u002F\u002Fwww.jcummings.net","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Fsimple-cache-killer.zip",{"slug":102,"name":103,"version":104,"author":105,"author_profile":106,"description":107,"short_description":108,"active_installs":91,"downloaded":109,"rating":72,"num_ratings":58,"last_updated":110,"tested_up_to":111,"requires_at_least":112,"requires_php":17,"tags":113,"homepage":116,"download_link":117,"security_score":82,"vuln_count":13,"unpatched_count":13,"last_vuln_date":36,"fetched_at":29},"wao-io-cache-control","wao.io Cache Control","1.0.0","wao.io","https:\u002F\u002Fprofiles.wordpress.org\u002Fwaoio\u002F","\u003Cp>wao.io Cache Control is a free plugin to clear your WordPress site’s cache at \u003Ca href=\"https:\u002F\u002Fwao.io\u002Fen\u002F?utm_source=wordpressMarketplace&utm_medium=description&utm_campaign=CachePlugin\" rel=\"nofollow ugc\">wao.io\u003C\u002Fa>.\u003C\u002Fp>\n\u003Ch3>Cache Control\u003C\u002Fh3>\n\u003Cp>Use this plugin to control your site’s cache at wao.io.\u003C\u002Fp>\n\u003Cp>Click on the \u003Cstrong>Invalidate Origin Content\u003C\u002Fstrong> button to clear your optimized WordPress website’s cache at wao.io\u003Cbr \u002F>\nto make sure that you and your customers will see the latest version of your content.\u003C\u002Fp>\n\u003Cp>Cache invalidation will automatically be triggered after publishing or updating a post or a page, and after switching a theme.\u003C\u002Fp>\n\u003Cp>Cache invalidation treats all content in the cache as if it was outdated.\u003Cbr \u002F>\nThis means that wao.io will check on the next request if the content changed on the origin server.\u003Cbr \u002F>\nIf so, it will be requested. Otherwise wao.io will continue to use the cached resource.\u003Cbr \u002F>\nThis is especially useful if you changed only a few images and the majority of content remained unmodified.\u003C\u002Fp>\n\u003Ch3>Settings\u003C\u002Fh3>\n\u003Cp>In the \u003Cstrong>wao.io Cache Control Settings\u003C\u002Fstrong> section of your general WordPress settings,\u003Cbr \u002F>\nplease enter your Site ID, and the API key that you obtained from wao.io’s support team.\u003C\u002Fp>\n\u003Cp>If you do not have an API key yet, please contact \u003Ca href=\"https:\u002F\u002Fwao.io\u002Fen\u002Faccount\u002Fsupport?utm_source=wordpressMarketplace&utm_medium=description&utm_campaign=CachePlugin\" rel=\"nofollow ugc\">wao.io support\u003C\u002Fa>.\u003C\u002Fp>\n\u003Cp>In future versions of this plugin, you can disable or enable automatic cache invalidation here.\u003C\u002Fp>\n\u003Ch3>Automatic Cache Invalidation\u003C\u002Fh3>\n\u003Cp>Automatic cache invalidation will make WordPress try to invalidate your\u003Cbr \u002F>\noptimized WordPress website’s cache at wao.io automatically each time your content has changed,\u003Cbr \u002F>\ne.g. after publishing a page or uploading an image.\u003C\u002Fp>\n\u003Ch3>Known Issues\u003C\u002Fh3>\n\u003Cp>Some WordPress sites reported a bug that the publish \u002F update post event did not fire when using the block editor (Gutenberg issue #17632).\u003Cbr \u002F>\nThis may affect the plugin wao.io Cache Control which depends on the event for automatic cache invalidation.\u003C\u002Fp>\n\u003Ch3>Development and Contribution\u003C\u002Fh3>\n\u003Cp>wao.io Cache Control plugin for WordPress was developed for wao.io by Ingo Steinke, Senior Software Developer at Avenga Germany GmbH.\u003C\u002Fp>\n\u003Cp>If you want to contribute to this plugin, please contact wao.io product development via our \u003Ca href=\"https:\u002F\u002Fwao.io\u002Fen\u002F?utm_source=wordpressMarketplace&utm_medium=description&utm_campaign=CachePlugin\" rel=\"nofollow ugc\">website wao.io\u003C\u002Fa>.\u003C\u002Fp>\n","wao.io Cache Control is a free plugin to clear your WordPress site's cache at wao.io.",1632,"2020-08-09T13:15:00.000Z","5.5.18","4.8",[19,21,114,115,23],"clear","control","https:\u002F\u002Fwao.io\u002Fen\u002Ffeatures\u002Floadtime-optimization\u002Fcaching","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Fwao-io-cache-control.zip",{"slug":119,"name":120,"version":121,"author":122,"author_profile":123,"description":124,"short_description":125,"active_installs":126,"downloaded":127,"rating":128,"num_ratings":129,"last_updated":130,"tested_up_to":131,"requires_at_least":132,"requires_php":133,"tags":134,"homepage":137,"download_link":138,"security_score":139,"vuln_count":140,"unpatched_count":13,"last_vuln_date":141,"fetched_at":29},"litespeed-cache","LiteSpeed Cache","7.8","LiteSpeed Technologies","https:\u002F\u002Fprofiles.wordpress.org\u002Flitespeedtech\u002F","\u003Cp>LiteSpeed Cache for WordPress (LSCWP) is an all-in-one site acceleration plugin, featuring an exclusive server-level cache and a collection of optimization features.\u003C\u002Fp>\n\u003Cp>LSCWP supports WordPress Multisite and is compatible with most popular plugins, including WooCommerce, bbPress, and Yoast SEO.\u003C\u002Fp>\n\u003Cp>LiteSpeed Cache for WordPress is compatible with ClassicPress.\u003C\u002Fp>\n\u003Ch3>Requirements\u003C\u002Fh3>\n\u003Cp>\u003Cstrong>General Features\u003C\u002Fstrong> may be used by anyone with any web server (LiteSpeed, Apache, NGINX, etc.).\u003C\u002Fp>\n\u003Cp>\u003Cstrong>LiteSpeed Exclusive Features\u003C\u002Fstrong> require one of the following: OpenLiteSpeed, commercial LiteSpeed products, LiteSpeed-powered hosting, or QUIC.cloud CDN. \u003Ca href=\"https:\u002F\u002Fdocs.litespeedtech.com\u002Flscache\u002Flscwp\u002Ffaq\u002F#why-do-the-cache-features-require-a-litespeed-server\" rel=\"nofollow ugc\">Why?\u003C\u002Fa>\u003C\u002Fp>\n\u003Ch3>Plugin Features\u003C\u002Fh3>\n\u003Ch4>General Features\u003C\u002Fh4>\n\u003Cul>\n\u003Cli>Free QUIC.cloud CDN Cache\u003C\u002Fli>\n\u003Cli>Object Cache (Memcached\u002FLSMCD\u002FRedis) Support+\u003C\u002Fli>\n\u003Cli>Image Optimization (Lossless\u002FLossy)\u003C\u002Fli>\n\u003Cli>Minify CSS, JavaScript, and HTML\u003C\u002Fli>\n\u003Cli>Minify inline & external CSS\u002FJS\u003C\u002Fli>\n\u003Cli>Combine CSS\u002FJS\u003C\u002Fli>\n\u003Cli>Automatically generate Critical CSS\u003C\u002Fli>\n\u003Cli>Lazy-load images\u002Fiframes\u003C\u002Fli>\n\u003Cli>Responsive Image Placeholders\u003C\u002Fli>\n\u003Cli>Multiple CDN Support+\u003C\u002Fli>\n\u003Cli>Load CSS Asynchronously\u003C\u002Fli>\n\u003Cli>Defer\u002Fdelay JS loading\u003C\u002Fli>\n\u003Cli>Browser Cache Support+\u003C\u002Fli>\n\u003Cli>Database Cleaner and Optimizer\u003C\u002Fli>\n\u003Cli>PageSpeed score (including Core Web Vitals) optimization\u003C\u002Fli>\n\u003Cli>OPcode Cache Support+\u003C\u002Fli>\n\u003Cli>HTTP\u002F2 Push for CSS\u002FJS (on web servers that support it)\u003C\u002Fli>\n\u003Cli>DNS Prefetch\u003C\u002Fli>\n\u003Cli>Cloudflare API\u003C\u002Fli>\n\u003Cli>Single Site and Multisite (Network) support\u003C\u002Fli>\n\u003Cli>Import\u002FExport settings\u003C\u002Fli>\n\u003Cli>Attractive, easy-to-understand interface\u003C\u002Fli>\n\u003Cli>AVIF\u002FWebP image format support\u003C\u002Fli>\n\u003Cli>Heartbeat control\u003C\u002Fli>\n\u003C\u002Ful>\n\u003Cp>+ This service is not provided by the LSCache plugin, nor is it guaranteed to be installed by your service provider. However, the plugin is compatible with the service if it is in use on your site.\u003C\u002Fp>\n\u003Ch4>LiteSpeed Exclusive Features\u003C\u002Fh4>\n\u003Cul>\n\u003Cli>Automatic page caching to greatly improve site performance\u003C\u002Fli>\n\u003Cli>Automatic purge of related pages based on certain events\u003C\u002Fli>\n\u003Cli>Private cache for logged-in users\u003C\u002Fli>\n\u003Cli>Caching of WordPress REST API calls\u003C\u002Fli>\n\u003Cli>Separate caching of desktop and mobile views\u003C\u002Fli>\n\u003Cli>Ability to schedule purge for specified URLs\u003C\u002Fli>\n\u003Cli>WooCommerce and bbPress support\u003C\u002Fli>\n\u003Cli>\u003Ca href=\"https:\u002F\u002Fdocs.litespeedtech.com\u002Flscache\u002Flscwp\u002Fcli\u002F\" rel=\"nofollow ugc\">WordPress CLI\u003C\u002Fa> commands\u003C\u002Fli>\n\u003Cli>API system for easy cache integration\u003C\u002Fli>\n\u003Cli>Exclude from cache by URI, Category, Tag, Cookie, User Agent\u003C\u002Fli>\n\u003Cli>Smart preload crawler with support for SEO-friendly sitemap\u003C\u002Fli>\n\u003Cli>Multiple crawlers for cache varies\u003C\u002Fli>\n\u003Cli>HTTP\u002F2 support\u003C\u002Fli>\n\u003Cli>\u003Ca href=\"https:\u002F\u002Fwww.litespeedtech.com\u002Fhttp3-faq\" rel=\"nofollow ugc\">HTTP\u002F3 & QUIC\u003C\u002Fa> support\u003C\u002Fli>\n\u003Cli>ESI (Edge Side Includes) support*\u003C\u002Fli>\n\u003Cli>Widgets and Shortcodes as ESI blocks* (requires Classic Widgets plugin for WP 5.8+)\u003C\u002Fli>\n\u003C\u002Ful>\n\u003Cp>* Feature not available in OpenLiteSpeed\u003C\u002Fp>\n\u003Ch3>LSCWP Resources\u003C\u002Fh3>\n\u003Cul>\n\u003Cli>\u003Ca href=\"https:\u002F\u002Flitespeedtech.com\u002Fslack\" rel=\"nofollow ugc\">Join our Slack community\u003C\u002Fa> to connect with other LiteSpeed users.\u003C\u002Fli>\n\u003Cli>\u003Ca href=\"https:\u002F\u002Fwordpress.org\u002Fsupport\u002Fplugin\u002Flitespeed-cache\u002F\" rel=\"ugc\">Ask a question on our support forum\u003C\u002Fa>.\u003C\u002Fli>\n\u003Cli>\u003Ca href=\"https:\u002F\u002Fdocs.litespeedtech.com\u002Flscache\u002Flscwp\u002F\" rel=\"nofollow ugc\">View detailed documentation\u003C\u002Fa>.\u003C\u002Fli>\n\u003Cli>\u003Ca href=\"https:\u002F\u002Fblog.litespeedtech.com\u002Ftag\u002Fwordpress\u002F\" rel=\"nofollow ugc\">Read about LSCWP and WordPress on our blog\u003C\u002Fa>.\u003C\u002Fli>\n\u003Cli>\u003Ca href=\"https:\u002F\u002Ftranslate.wordpress.org\u002Fprojects\u002Fwp-plugins\u002Flitespeed-cache\u002F\" rel=\"nofollow ugc\">Help translate LSCWP\u003C\u002Fa>.\u003C\u002Fli>\n\u003Cli>\u003Ca href=\"https:\u002F\u002Fgithub.com\u002Flitespeedtech\u002Flscache_wp\" rel=\"nofollow ugc\">Contribute to the LSCWP GitHub repo\u003C\u002Fa>.\u003C\u002Fli>\n\u003C\u002Ful>\n\u003Ch3>Third Party Compatibility\u003C\u002Fh3>\n\u003Cp>The vast majority of plugins and themes are compatible with LSCache. \u003Ca href=\"https:\u002F\u002Fdocs.litespeedtech.com\u002Flscache\u002Flscwp\u002Fapi\u002F\" rel=\"nofollow ugc\">Our API\u003C\u002Fa> is available for those that are not. Use the API to customize smart purging, customize cache rules, create cache varies, and make WP nonce cacheable, among other things.\u003C\u002Fp>\n\u003Ch3>Privacy\u003C\u002Fh3>\n\u003Cp>This plugin includes some suggested text that you can add to your site’s Privacy Policy via the Guide in the WordPress Privacy settings.\u003C\u002Fp>\n\u003Cp>\u003Cstrong>For your own information:\u003C\u002Fstrong> LiteSpeed Cache for WordPress potentially stores a duplicate copy of every web page on display on your site. The pages are stored locally on the system where LiteSpeed server software is installed and are not transferred to or accessed by LiteSpeed employees in any way, except as necessary in providing routine technical support if you request it. All cache files are temporary, and may easily be purged before their natural expiration, if necessary, via a Purge All command. It is up to individual site administrators to come up with their own cache expiration rules.\u003C\u002Fp>\n\u003Cp>In addition to caching, our WordPress plugin has online features provided by QUIC.cloud for Image Optimization and Page Optimization services. When one of these optimizations is requested, data is transmitted to a remote QUIC.cloud server, processed, and then transmitted back for use on your site. QUIC.cloud keeps copies of that data for up to 7 days and then permanently deletes it. Similarly, the WordPress plugin has a Reporting feature whereby a site owner can transmit an environment report to LiteSpeed so that we may better provide technical support. None of these features collects any visitor data. Only server and site data are involved.\u003C\u002Fp>\n\u003Cp>QUIC.cloud CDN, if enabled, uses LSCache technology to access your site, and serve your content from remote global nodes. Your data is not accessed by QUIC.cloud employees in any way, except as necessary in providing maintenance or technical support.\u003C\u002Fp>\n\u003Cp>Please see the \u003Ca href=\"https:\u002F\u002Fquic.cloud\u002Fprivacy-policy\u002F\" rel=\"nofollow ugc\">QUIC.cloud Privacy Policy\u003C\u002Fa> for our complete Privacy\u002FGDPR statement.\u003C\u002Fp>\n","All-in-one unbeatable acceleration & PageSpeed improvement: caching, image\u002FCSS\u002FJS optimization...",7000000,126174082,96,2718,"2026-03-03T18:24:00.000Z","6.9.4","5.3","7.2",[21,135,23,79,136],"optimize","seo","https:\u002F\u002Fwww.litespeedtech.com\u002Fproducts\u002Fcache-plugins\u002Fwordpress-acceleration","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Flitespeed-cache.7.8.zip",82,18,"2025-10-28 00:00:00",{"slug":143,"name":144,"version":145,"author":146,"author_profile":147,"description":148,"short_description":149,"active_installs":150,"downloaded":151,"rating":152,"num_ratings":153,"last_updated":154,"tested_up_to":131,"requires_at_least":132,"requires_php":24,"tags":155,"homepage":157,"download_link":158,"security_score":159,"vuln_count":160,"unpatched_count":13,"last_vuln_date":161,"fetched_at":29},"wp-fastest-cache","WP Fastest Cache – WordPress Cache Plugin","1.4.6","Emre Vona","https:\u002F\u002Fprofiles.wordpress.org\u002Femrevona\u002F","\u003Ch4>Official Website\u003C\u002Fh4>\n\u003Cp>You can find more information on our website (\u003Ca href=\"https:\u002F\u002Fwww.wpfastestcache.com\u002F\" rel=\"nofollow ugc\">wpfastestcache.com\u003C\u002Fa>)\u003C\u002Fp>\n\u003Cp>Welcome to the page of the WP Fastest Cache plugin, a WordPress cache plugin developed to speed up WordPress sites.\u003C\u002Fp>\n\u003Cp>In today’s world where every second counts, optimizing your website’s performance is very important. Meet WP Fastest Cache, your caching plugin that you can use to speed up WordPress websites. \u003C\u002Fp>\n\u003Cp>Optimize the performance of your website with WP Fastest Cache. Improve Google PageSpeed, Core Web Vitals, GTmetrix and Pingdom score with our wp cache plugin.\u003C\u002Fp>\n\u003Cp>In addition, page speed is a ranking factor in Google’s search algorithm. Therefore, using cache plugins helps improve your SEO ranking. Our WordPress optimization plugin not only accelerates your site but also boosts SEO rankings.\u003C\u002Fp>\n\u003Ch4>Features\u003C\u002Fh4>\n\u003Col>\n\u003Cli>Mod_Rewrite which is the fastest method is used in this plugin\u003C\u002Fli>\n\u003Cli>All cache files are deleted when a post or page is published\u003C\u002Fli>\n\u003Cli>Admin can delete all cached files from the options page\u003C\u002Fli>\n\u003Cli>Admin can delete minified css and js files from the options page\u003C\u002Fli>\n\u003Cli>Block cache for specific page or post with Short Code\u003C\u002Fli>\n\u003Cli>Cache Timeout – All cached files are deleted at the determinated time\u003C\u002Fli>\n\u003Cli>Cache Timeout for specific pages\u003C\u002Fli>\n\u003Cli>Enable\u002FDisable cache option for mobile devices\u003C\u002Fli>\n\u003Cli>Enable\u002FDisable cache option for logged-in users\u003C\u002Fli>\n\u003Cli>SSL support\u003C\u002Fli>\n\u003Cli>CDN support – Effortlessly enhance website speed and performance with seamless CDN integration, supporting Bunny CDN, Cloudflare, and various other leading CDN providers. CDN integration modifies the URLs of static resources, enabling these assets to be served from your CDN service provider\u003C\u002Fli>\n\u003Cli>Cloudflare support – Cloudflare integration triggers the clearing of the cache on Cloudflare through API when a cache purge is initiated. As a result, WP Fastest Cache and Cloudflare operate seamlessly in tandem\u003C\u002Fli>\n\u003Cli>Preload Cache – Create the cache of all the site automatically\u003C\u002Fli>\n\u003Cli>Exclude pages and user-agents\u003C\u002Fli>\n\u003Cli>WP-CLI cache clearing\u003C\u002Fli>\n\u003Cli>Proxy Cache – Varnish Cache Integration to clear proxy cached content automatically when the cache created by WP Fastest Cache is cleared\u003C\u002Fli>\n\u003C\u002Fol>\n\u003Ch4>Performance Optimization\u003C\u002Fh4>\n\u003Cp>WP Fastest Cache is not only a wp cache plugin but also a speed optimization wordpress cache plugin. There are many features such as Minify Html, Minify Css, Enable Gzip Compression, Leverage Browser Caching, Add Expires Headers, Combine CSS, Combine JS, Disable Emoji.\u003C\u002Fp>\n\u003Col>\n\u003Cli>Page Caching – Page caching feature generates and store static HTML files from your dynamic WordPress blog to reduce initial server response time, and improving page load time. Page cache and caching play a critical role in improving website speed and overall web performance. By storing frequently accessed data, effective caching reduces server workload and significantly improves cache performance, allowing pages to be delivered faster to users. This optimization directly lowers load time and enhances page speed, resulting in a smoother user experience and better SEO.\u003C\u002Fli>\n\u003Cli>Minify Html – Using an HTML minifier is an effective way to reduce HTML size and optimize HTML by removing unnecessary spaces, comments, and line breaks. A smaller HTML file helps reduce page size, which directly improves page speed and leads to a faster website experience for users. By focusing on web performance optimization, optimized HTML allows browsers to load and render pages more efficiently, helping to improve website speed, lower bandwidth usage, and deliver better overall performance across all devices\u003C\u002Fli>\n\u003Cli>Minify Css – CSS minify techniques play a crucial role in modern web development by reducing unnecessary characters through a reliable css minifier. With effective css compression, developers can compress CSS files and apply proper css minification to optimize CSS for production environments. This approach helps reduce CSS file size, which directly contributes to improve website speed and overall css performance optimization. As part of a broader page speed optimization strategy, these practices significantly enhance website performance optimization and lead to better website loading performance, especially on mobile and low-bandwidth connections\u003C\u002Fli>\n\u003Cli>Enable Gzip Compression – Reduce the size of files sent from your server to increase the speed to which they are transferred to the browser\u003C\u002Fli>\n\u003Cli>Leverage browser caching – Browser cache plays a critical role in how efficiently a web browser cache stores static resources like images, stylesheets, and scripts, directly impacting page load speed. By allowing returning visitors to load files from their local browser cache instead of downloading them again, websites can significantly reduce server requests and improve website speed. Properly configured browser caching not only creates a faster and smoother user experience but also helps lower bandwidth usage and enhance overall site performance\u003C\u002Fli>\n\u003Cli>Combine CSS – Reduce number of HTTP round-trips by combining multiple CSS resources into one\u003C\u002Fli>\n\u003Cli>Combine JS – Combining JavaScript files is a core technique in javascript optimization and js optimization, especially when the goal is to reduce requests and improve page load speed. By combine js assets or combine javascript files into a single bundle, developers can streamline how scripts are delivered to the browser. Whether you call it js combine or javascript combine, the idea is the same: fewer HTTP requests mean faster performance. Similarly, approaches that merge js or merge javascript—also known as js merge or javascript merge—help eliminate overhead caused by loading multiple separate files. When done correctly, combining and merging scripts leads to cleaner delivery, better caching, and noticeably faster websites\u003C\u002Fli>\n\u003Cli>Disable Emoji – You can remove the emoji inline css and wp-emoji-release.min.js\u003C\u002Fli>\n\u003C\u002Fol>\n\u003Ch4>Premium Performance Optimization\u003C\u002Fh4>\n\u003Cp>The free version is enough to speed up your site but in the premium version there are extra features such as Mobile Cache, Widget Cache, Minify HTML Plus, Minify CSS Plus, Minify JS, Combine JS Plus, Defer Javascript, Optimize Images, Convert WebP, Database Cleanup, Google Fonts Async, Lazy Load and Delay JS for super fast load times.\u003C\u002Fp>\n\u003Col>\n\u003Cli>Mobile Cache\u003C\u002Fli>\n\u003Cli>Widget Cache\u003C\u002Fli>\n\u003Cli>Minify HTML Plus\u003C\u002Fli>\n\u003Cli>Minify CSS Plus\u003C\u002Fli>\n\u003Cli>Minify Javascript – Minify JS is a core step in web performance optimization because js minify techniques remove unnecessary characters, comments, and whitespace, making files smaller and faster to load. Through proper javascript minification, developers can compress JavaScript assets and significantly reduce transfer size, which directly supports effective js optimization and overall javascript optimization strategies. When combined with caching and code splitting, minified scripts help improve website speed, lower bandwidth usage, and enhance user experience. As a result, page speed optimization becomes easier to achieve, leading to faster render times and better search engine rankings.\u003C\u002Fli>\n\u003Cli>Combine JS Plus\u003C\u002Fli>\n\u003Cli>Defer Javascript – Eliminate render-blocking JavaScript resources. Consider delivering critical JS inline and deferring all non-critical JS\u003C\u002Fli>\n\u003Cli>Optimize Images – Optimized images load faster and consume less cellular data. Looking for an easy image compressor? Our tool lets you compress images instantly, including Compress JPEG and Compress PNG options. Enjoy fast image compression to reduce image size without losing quality. Perfect for quick image optimization with a smart image optimizer designed for all your needs.\u003C\u002Fli>\n\u003Cli>Convert WebP – Serve images in next-gen formats. Image formats like JPEG 2000, JPEG XR, and WebP often provide better compression than PNG or JPEG, which means faster downloads and less data consumption. A fast and reliable WebP converter helps you convert to WebP in seconds. Whether you need a WebP convert tool, a JPG to WEBP Converter, PNG to WEBP Converter, or a simple image to WebP option, you can easily optimize your images. Quickly handle JPG to WEBP, PNG to WEBP, jpg convert to webp, and png convert to webp tasks to reduce file size and improve web performance.\u003C\u002Fli>\n\u003Cli>Database Cleanup – To keep your system running smoothly, it’s important to clean database structures regularly and ensure you clean DB records that are no longer needed. A database cleaner is essential for effective database cleaning and long-term database optimization. By removing unused entries and organizing data efficiently, you can significantly improve database performance and speed up database operations. Modern db cleaner tools automate the entire db cleaning process, helping developers maintain fast, reliable, and scalable systems. The Database Cleanup feature clears out all of the garbage datas such as post revisions, trashed posts & pages, comments from trash & spam, trackbacks and pingbacks, transient options, orphaned post meta, comment meta, user meta, term meta, and term relationship etc.\u003C\u002Fli>\n\u003Cli>Google Fonts Async\u003C\u002Fli>\n\u003Cli>Lazy Load – Lazy loading technique improve page speed and overall website loading time by loading content only when it is needed. Using lazy load images, lazy loading images, lazy load videos, and lazy load iframe helps reduce initial load size, enhances web performance, and delivers a smoother user experience. When implemented correctly, these methods make it easier to optimize website performance, lower bandwidth usage, and ensure faster, more efficient page delivery for both users and search engines.\u003C\u002Fli>\n\u003Cli>Delay JS – The Delay JavaScript feature helps reduce the ‘Reduce unused JavaScript’ warning in the Google PageSpeed Insights tool\u003C\u002Fli>\n\u003C\u002Fol>\n\u003Ch4>Information\u003C\u002Fh4>\n\u003Cp>It is very inconvenient to use multiple caching plugins at the same time. That’s why you need to disable plugins such as LiteSpeed Cache, WP-Optimize, W3 Total Cache, WP Super Cache, SiteGround Optimizer, Breeze while using WP Fastest Cache.\u003C\u002Fp>\n\u003Cp>WP Fastest Cache is compatible with most popular plugins such as Contact Form 7, Yoast SEO, Elementor Website Builder, Classic Editor, Akismet Spam Protection, WooCommerce, Contact Form by WPForms, Really Simple SSL, All-in-One WP Migration, Yoast Duplicate Post, Wordfence Security – Firewall & Malware Scan, WordPress Importer, UpdraftPlus WordPress Backup Plugin, MonsterInsights, All in One SEO, WP Mail SMTP by WPForms.\u003C\u002Fp>\n\u003Ch4>Supported Languages\u003C\u002Fh4>\n\u003Cp>Although there are over 7000 languages spoken in the world today, we feel very lucky to support 30 languages for now.\u003C\u002Fp>\n\u003Cp>However, localizing or adapting a plugin to another language or culture is time consuming and a demanding task. That’s where the amazing Translation Contributors team of WordPress comes into play. These selfless people spent their precious time without expecting anything in return so that other people can use the add-ons more easily. We sincerely thank all of them.\u003C\u002Fp>\n\u003Cp>Chinese Simplified (China), Chinese Traditional (Taiwan), Czech, Dutch (Belgium), Dutch (Netherlands), English (South Africa), English (UK), Finnish, French (France), Galician, German (Germany), Hungarian, Indonesian, Italian, Japanese, Korean (Korea), Persian, Russian, Slovak (Slovakia), Slovenian, Spanish (Argentina), Spanish (Chile), Spanish (Colombia), Spanish (Ecuador), Spanish (Mexico), Spanish (Spain), Spanish (Venezuela), Swedish, Turkish, Ukrainian\u003C\u002Fp>\n","The simplest and fastest WP Cache system",1000000,63353783,98,4207,"2026-02-10T14:26:00.000Z",[19,156,135,23,79],"core-web-vitals","http:\u002F\u002Fwordpress.org\u002Fplugins\u002Fwp-fastest-cache\u002F","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Fwp-fastest-cache.1.4.6.zip",76,35,"2025-11-26 21:34:28",{"attackSurface":163,"codeSignals":256,"taintFlows":263,"riskAssessment":264,"analyzedAt":270},{"hooks":164,"ajaxHandlers":252,"restRoutes":253,"shortcodes":254,"cronEvents":255,"entryPointCount":13,"unprotectedCount":13},[165,171,173,177,181,185,190,194,198,202,206,210,214,218,222,225,227,231,233,237,242,246,249],{"type":166,"name":167,"callback":168,"file":169,"line":170},"action","init","load_plugin_textdomain","CacholongCacheControl.php",208,{"type":166,"name":167,"callback":167,"file":169,"line":172},210,{"type":166,"name":174,"callback":175,"priority":91,"file":169,"line":176},"wp_update_nav_menu","handle_nav_menu_update",214,{"type":178,"name":179,"callback":179,"priority":91,"file":169,"line":180},"filter","plugin_action_links",215,{"type":166,"name":182,"callback":183,"file":169,"line":184},"admin_enqueue_scripts","enqueue_scripts_and_styles_backend",217,{"type":166,"name":186,"callback":187,"priority":188,"file":169,"line":189},"admin_notices","add_helper_messages",999,225,{"type":166,"name":191,"callback":192,"file":169,"line":193},"shutdown","handle_shutdown",229,{"type":166,"name":195,"callback":196,"priority":58,"file":169,"line":197},"pre_post_update","handle_slug_change",232,{"type":166,"name":199,"callback":200,"priority":91,"file":169,"line":201},"save_post","handle_purge_post_save",233,{"type":166,"name":203,"callback":204,"priority":91,"file":169,"line":205},"wp_trash_post","handle_purge_post_trash",234,{"type":166,"name":207,"callback":208,"priority":91,"file":169,"line":209},"untrashed_post","handle_purge_post_untrash",235,{"type":166,"name":211,"callback":212,"file":169,"line":213},"wp_enqueue_scripts","enqueue_scripts_and_styles_frontend",240,{"type":166,"name":215,"callback":216,"priority":188,"file":169,"line":217},"admin_bar_menu","create_toolbar_node_purge",241,{"type":166,"name":219,"callback":220,"priority":188,"file":169,"line":221},"admin_bar_init","handle_purge_from_admin_bar",242,{"type":166,"name":167,"callback":223,"file":169,"line":224},"init_hooks_style",246,{"type":166,"name":167,"callback":167,"file":169,"line":226},249,{"type":166,"name":228,"callback":229,"file":169,"line":230},"cc_debug_hook","handle_debug_hook",252,{"type":166,"name":182,"callback":183,"file":169,"line":232},291,{"type":178,"name":234,"callback":235,"file":169,"line":236},"style_loader_tag","remove_id",302,{"type":166,"name":238,"callback":239,"file":240,"line":241},"admin_menu","create_settings_page","core\\controller\\admin\\AdminSettingsPageController.php",56,{"type":166,"name":243,"callback":244,"file":240,"line":245},"admin_init","create_settings_page_sections",57,{"type":166,"name":243,"callback":247,"file":240,"line":248},"register_settings",58,{"type":166,"name":243,"callback":250,"file":240,"line":251},"update_cron_cache_purging_if_needed",60,[],[],[],[],{"dangerousFunctions":257,"sqlUsage":258,"outputEscaping":260,"fileOperations":13,"externalRequests":13,"nonceChecks":58,"capabilityChecks":13,"bundledLibraries":262},[],{"prepared":13,"raw":13,"locations":259},[],{"escaped":13,"rawEcho":13,"locations":261},[],[],[],{"summary":265,"deductions":266},"The static analysis of cache-control-by-cacholong v5.4.1 reveals a generally strong security posture in terms of direct code vulnerabilities. The plugin demonstrates excellent practices by having no dangerous functions, all SQL queries using prepared statements, and all output properly escaped. The absence of file operations and external HTTP requests further reduces the attack surface. The presence of a nonce check is also a positive indicator of security awareness. However, the complete lack of AJAX handlers, REST API routes, shortcodes, and cron events, while reducing the immediate attack surface, might also suggest limited functionality or a very focused purpose for the plugin.\n\nThe primary concern stems from the vulnerability history. The plugin has a history of two known CVEs, both of which are currently unpatched. These vulnerabilities, identified as Cross-site Scripting (XSS) and Cross-Site Request Forgery (CSRF), are of medium severity. The fact that these vulnerabilities are recent (dated 2025-04-01) and remain unpatched indicates a significant risk to users. Even with a secure codebase in other areas, unpatched historical vulnerabilities are a critical weakness that exposes the system to known exploits. This pattern suggests a lack of timely security patching and maintenance, which is a serious concern for any plugin.\n\nIn conclusion, while cache-control-by-cacholong v5.4.1 exhibits strong secure coding practices in its static analysis, the presence of two unpatched medium-severity vulnerabilities (XSS and CSRF) significantly undermines its overall security. Users should be highly cautious as these known exploits could be leveraged. The plugin's strengths lie in its clean code regarding SQL and output handling, but its weakness in patch management is a critical issue that outweighs these positives.",[267],{"reason":268,"points":269},"Unpatched CVEs: 2 medium severity",20,"2026-03-16T19:36:51.648Z",{"wat":272,"direct":281},{"assetPaths":273,"generatorPatterns":276,"scriptPaths":277,"versionParams":278},[274,275],"\u002Fwp-content\u002Fplugins\u002Fcache-control-by-cacholong\u002Fassets\u002Fjs\u002Fscript.js","\u002Fwp-content\u002Fplugins\u002Fcache-control-by-cacholong\u002Fassets\u002Fcss\u002Fstyle.css",[],[274],[279,280],"\u002Fwp-content\u002Fplugins\u002Fcache-control-by-cacholong\u002Fassets\u002Fjs\u002Fscript.js?ver=","\u002Fwp-content\u002Fplugins\u002Fcache-control-by-cacholong\u002Fassets\u002Fcss\u002Fstyle.css?ver=",{"cssClasses":282,"htmlComments":284,"htmlAttributes":286,"restEndpoints":288,"jsGlobals":291,"shortcodeOutput":293},[283],"cacholong-cache-control-settings",[285],"\u003C!-- Cache Control by Cacholong -->",[287],"data-cacholong-cache-control-settings",[289,290],"\u002Fwp-json\u002Fcacholong-cache-control\u002Fv1\u002Fsettings","\u002Fwp-json\u002Fcacholong-cache-control\u002Fv1\u002Fpurge",[292],"cacholongCacheControlSettings",[]]