WP-Safety

Cache Me Baby Security & Risk Analysis

wordpress.org/plugins/cache-me-button

Cache Me Baby simulates visits to pages and posts to warm up your cache and integrates with Cloudflare for faster load times.

10 active installs v3.3 PHP 7.0+ WP 3.7+ Updated Jun 2, 2025
cloudflaresite-cachesite-speed
100
A · Safe
CVEs total0
Unpatched0
Last CVENever
Plugin page Download
Safety Verdict

Is Cache Me Baby Safe to Use in 2026?

Generally Safe

Score 100/100

Cache Me Baby has no known CVEs and is actively maintained. It's a solid choice for most WordPress installations.

No known CVEs Updated 11mo ago
Risk Assessment

The "cache-me-button" v3.3 plugin exhibits a generally good security posture with several strengths. The absence of any known CVEs, along with 100% of SQL queries utilizing prepared statements and a high percentage (82%) of properly escaped output, are positive indicators. The presence of nonce checks and capability checks on all identified AJAX handlers (4 total) further bolsters its defenses against common web attacks. However, the presence of the `shell_exec` function is a significant concern. While it is not directly linked to any identified taint flows with unsanitized paths in this static analysis, its mere existence represents a potential avenue for remote code execution if improperly handled elsewhere in the code or in future updates. The plugin also makes external HTTP requests, which, while not inherently a vulnerability, can become one if the data being sent or received is not handled securely. The low number of taint flows analyzed (2) and the absence of critical or high severity taint issues, combined with no recorded vulnerability history, suggest that the plugin has likely been developed with security in mind. Despite these positives, the `shell_exec` function warrants careful scrutiny and ideally mitigation or removal if not strictly necessary for the plugin's core functionality.

Key Concerns

  • Dangerous function (shell_exec) present
  • Unsanitized path in taint flow
  • External HTTP requests made
  • Output not properly escaped (18%)
Vulnerabilities
None known

Cache Me Baby Security Vulnerabilities

No known vulnerabilities — this is a good sign.
Version History

Cache Me Baby Release Timeline

v3.3Current
v3.2
v3.1
v3.0
Code Analysis
Analyzed Mar 16, 2026

Cache Me Baby Code Analysis

Dangerous Functions
1
Raw SQL Queries
0
0 prepared
Unescaped Output
3
14 escaped
Nonce Checks
4
Capability Checks
1
File Operations
0
External Requests
4
Bundled Libraries
0

Dangerous Functions Found

shell_execincludes\main.php:119

Output Escaping

82% escaped17 total outputs
Data Flows · Security
1 unsanitized

Data Flow Analysis

2 flows1 with unsanitized paths
main_admin_page_html (includes\admin.php:128)
Source (user input) Sink (dangerous op) Sanitizer Transform Unsanitized Sanitized
Attack Surface

Cache Me Baby Attack Surface

Entry Points4
Unprotected0

AJAX Handlers 4

authwp_ajax_test_cloudflare_connectionincludes\cloudflare.php:15
authwp_ajax_purge_cloudflare_cacheincludes\cloudflare.php:17
authwp_ajax_warm_cloudflare_cache_ajaxincludes\cloudflare.php:19
authwp_ajax_warm_cache_ajaxincludes\cron.php:19
WordPress Hooks 9
actionadmin_menuincludes\admin.php:8
actionadmin_initincludes\admin.php:9
actionadmin_enqueue_scriptsincludes\admin.php:10
actionadmin_bar_menuincludes\admin.php:11
actioncache_me_baby_cron_hookincludes\cron.php:15
actionsave_postincludes\cron.php:23
actioncache_me_baby_update_cronincludes\cron.php:27
actionplugins_loadedincludes\main.php:45
actioninitincludes\main.php:83

Scheduled Events 1

cache_me_baby_cron_hook
Maintenance & Trust

Cache Me Baby Maintenance & Trust

Maintenance Signals

WordPress version tested6.8.5
Last updatedJun 2, 2025
PHP min version7.0
Downloads6K

Community Trust

Rating26/100
Number of ratings3
Active installs10
Alternatives

Cache Me Baby Alternatives

Cloudflare

Cloudflare

cloudflare

A
99

All of Cloudflare’s performance and security benefits in a simple one-click install.

200K 2 CVEs
CAPTCHA 4WP – Antispam CAPTCHA solution for WordPress

CAPTCHA 4WP – Antispam CAPTCHA solution for WordPress

advanced-nocaptcha-recaptcha

A
99

Use CAPTCHA to stop spam and allow customers & users to interact with your website easily. Block fake accounts and orders. Avoid false positives.

100K 1 CVE
Flexible SSL for CloudFlare

Flexible SSL for CloudFlare

cloudflare-flexible-ssl

A
100

Fix For Redirect Loops on WordPress with CloudFlare's Flexible/Universal SSL.

100K No CVEs
NitroPack – Performance, Page Speed & Cache Plugin for Core Web Vitals, CDN & Image Optimization

NitroPack – Performance, Page Speed & Cache Plugin for Core Web Vitals, CDN & Image Optimization

nitropack

A
89

Boost site speed and performance with an all-in-one cache and speed optimization plugin. Pass Core Web Vitals with CDN, image optimization, lazy loadi …

100K 7 CVEs
Simple CAPTCHA Alternative with Cloudflare Turnstile

Simple CAPTCHA Alternative with Cloudflare Turnstile

simple-cloudflare-turnstile

A
98

Add Cloudflare Turnstile to WordPress, WooCommerce, Contact Forms & more. The user-friendly, privacy-preserving reCAPTCHA alternative. 100% free!

100K 2 CVEs
Developer Profile

Cache Me Baby Developer Profile

WP Fix It - WordPress Experts

10 plugins · 9K total installs

94
trust score
Avg Security Score
100/100
Avg Patch Time
30 days
View full developer profile
Detection Fingerprints

How We Detect Cache Me Baby

Patterns used to identify this plugin on WordPress sites during automated security audits and web crawling.

Asset Fingerprints

Asset Paths
/wp-content/plugins/cache-me-baby/assets/css/cache-me-baby.css
Version Parameters
cache-me-baby.css?ver=

HTML / DOM Fingerprints

CSS Classes
cache-me-baby-count
Data Attributes
name="cache_me_baby_post_types[]"name="cache_me_baby_excluded_urls"name="cache_me_baby_cron_schedule"name="cache_me_baby_auto_cache_update"name="cache_me_baby_hide_admin_bar"name="cache_me_baby_cloudflare_zone_id"+2 more
FAQ

Frequently Asked Questions about Cache Me Baby