Does Hyper Cache have any unpatched vulnerabilities?

No. All known vulnerabilities in Hyper Cache have been patched as of the latest data update. Always keep the plugin updated to the latest version.

Is Hyper Cache compatible with WordPress 6.9.4?

According to WordPress.org data, Hyper Cache 3.4.4 has been tested up to WordPress 6.9.4. Check the plugin's changelog for the latest compatibility information.

Is Hyper Cache compatible with PHP 7.0+?

Hyper Cache requires PHP 7.0 or higher. Most modern WordPress hosts run PHP 8.1 or 8.2. If you are on an older PHP version, consider upgrading before installing this plugin.

How often is Hyper Cache updated?

Hyper Cache was last updated on Feb 3, 2026. Frequent updates are generally a positive security signal.

What is Hyper Cache's security score?

Hyper Cache has a WP-Safety security score of 100/100. This score is computed from CVE history, patch response time, developer trust signals, and plugin maintenance activity.

Hyper Cache Security & Risk Analysis

wordpress.org/plugins/hyper-cache

Hyper Cache is a performant and easy to configure cache system for WordPress.

9K active installs v3.4.4 PHP 7.0+ WP 6.1+ Updated Feb 3, 2026

cacheperformancespeed

A · Safe

CVEs total0

Unpatched0

Last CVENever

Plugin page Download

Safety Verdict

Is Hyper Cache Safe to Use in 2026?

Generally Safe

Score 100/100

Hyper Cache has no known CVEs and is actively maintained. It's a solid choice for most WordPress installations.

No known CVEs Updated 1mo ago

Risk Assessment

Hyper Cache v3.4.4 exhibits a generally strong security posture based on the provided static analysis. The absence of identified CVEs and the plugin's limited attack surface, with no AJAX handlers, REST API routes, or shortcodes exposed without authentication, are positive indicators. The code's adherence to using prepared statements for all SQL queries and a high percentage of properly escaped output further bolster its security. However, there are a few areas that warrant attention. The presence of 3 unsanitized path taint flows, even without critical or high severity, suggests a potential for path traversal or file manipulation vulnerabilities if not handled carefully by the underlying WordPress environment or user input. Additionally, while there is a single nonce check and zero capability checks, the lack of capability checks on other potential entry points could be a concern, especially in conjunction with the file operations and cron events.

Key Concerns

Unsanitized paths in taint flows
File operations without explicit checks
Lack of capability checks on entry points

Vulnerabilities

None known

Hyper Cache Security Vulnerabilities

No known vulnerabilities — this is a good sign.

Code Analysis

Analyzed Mar 16, 2026

Hyper Cache Code Analysis

Dangerous Functions

Raw SQL Queries

0 prepared

Unescaped Output

23 escaped

Nonce Checks

Capability Checks

File Operations

External Requests

Bundled Libraries

Output Escaping

85% escaped27 total outputs

Data Flows

3 unsanitized

Data Flow Analysis

3 flows3 with unsanitized paths

<advanced-cache> (advanced-cache.php:0)

Source (user input) Sink (dangerous op) Sanitizer Transform Unsanitized Sanitized

Attack Surface

Hyper Cache Attack Surface

Entry Points0

Unprotected0

WordPress Hooks 12

actionedit_postplugin.php:36

actionsave_postplugin.php:37

actioncomment_postplugin.php:38

actionwp_update_comment_countplugin.php:39

actionbbp_new_replyplugin.php:40

actionbbp_new_topicplugin.php:41

actionwpplugin.php:42

actionhyper_cache_cleanplugin.php:44

actionautoptimize_action_cachepurgedplugin.php:46

actiontemplate_redirectplugin.php:49

actionadmin_menuplugin.php:51

actionadmin_enqueue_scriptsplugin.php:52

Scheduled Events 2

hyper_cache_clean

Maintenance & Trust

Hyper Cache Maintenance & Trust

Maintenance Signals

WordPress version tested6.9.4

Last updatedFeb 3, 2026

PHP min version7.0

Downloads1.1M

Community Trust

Rating90/100

Number of ratings82

Active installs9K

Alternatives

Hyper Cache Alternatives

WP Fastest Cache – WordPress Cache Plugin

wp-fastest-cache

The simplest and fastest WP Cache system

1.0M 35 CVEs

Jetpack Boost – Website Speed, Performance and Critical CSS

jetpack-boost

Speed up your WordPress site with one-click optimizations like Page Cache, Critical CSS, and Image CDN to improve Core Web Vitals.

200K 2 CVEs

Aruba HiSpeed Cache

aruba-hispeed-cache

Aruba HiSpeed Cache interfaces directly with an Aruba hosting platform's HiSpeed Cache service and automates its management.

100K 6 CVEs

NitroPack – Performance, Page Speed & Cache Plugin for Core Web Vitals, CDN & Image Optimization

nitropack

Boost site speed and performance with an all-in-one cache and speed optimization plugin. Pass Core Web Vitals with CDN, image optimization, lazy loadi …

100K 6 CVEs

10Web Booster – Website speed optimization, Cache & Page Speed optimizer

tenweb-speed-optimizer

Speed up your site with 10Web Booster. Pass Core Web Vitals by optimizing HTML / CSS / JavaScript, Image Optimization, Lazy Loading, Cache, Google Fon …

90K 5 CVEs

Developer Profile

Hyper Cache Developer Profile

Stefano Lissa

14 plugins · 515K total installs

trust score

Avg Security Score

94/100

Avg Patch Time

650 days

View full developer profile

Detection Fingerprints

How We Detect Hyper Cache

Patterns used to identify this plugin on WordPress sites during automated security audits and web crawling.

Asset Fingerprints

Asset Paths

/wp-content/plugins/hyper-cache/js/hyper-cache-admin.js/wp-content/plugins/hyper-cache/css/hyper-cache-admin.css

Script Paths

https://cdnjs.cloudflare.com/ajax/libs/jqueryui/1.12.1/jquery-ui.css

HTML / DOM Fingerprints

CSS Classes

hyper-cache-formhyper-cache-settings

HTML Comments

Data Attributes

data-hc-actiondata-hc-cache-id

JS Globals

HyperCacheAdmin

FAQ