Does Super Host Speed Benchmark have any unpatched vulnerabilities?

No. All known vulnerabilities in Super Host Speed Benchmark have been patched as of the latest data update. Always keep the plugin updated to the latest version.

Is Super Host Speed Benchmark compatible with WordPress 5.2.24?

According to WordPress.org data, Super Host Speed Benchmark 0.6.7 has been tested up to WordPress 5.2.24. Check the plugin's changelog for the latest compatibility information.

Is Super Host Speed Benchmark compatible with PHP 5.2.4+?

Super Host Speed Benchmark requires PHP 5.2.4 or higher. Most modern WordPress hosts run PHP 8.1 or 8.2. If you are on an older PHP version, consider upgrading before installing this plugin.

How often is Super Host Speed Benchmark updated?

Super Host Speed Benchmark was last updated on Nov 7, 2019. Frequent updates are generally a positive security signal.

What is Super Host Speed Benchmark's security score?

Super Host Speed Benchmark has a WP-Safety security score of 85/100. This score is computed from CVE history, patch response time, developer trust signals, and plugin maintenance activity.

Super Host Speed Benchmark Security & Risk Analysis

wordpress.org/plugins/super-host-speed-benchmark

Test and benchmark the speed of your hosting provider, based on the speed of their mysql database, which tends to be the main cause of Wordpress being …

10 active installs v0.6.7 PHP 5.2.4+ WP 4.6+ Updated Nov 7, 2019

benchmarkperformancespeedspeed-benchmarkspeed-test

A · Safe

CVEs total0

Unpatched0

Last CVENever

Plugin page Download

Safety Verdict

Is Super Host Speed Benchmark Safe to Use in 2026?

Generally Safe

Score 85/100

Super Host Speed Benchmark has no known CVEs and is actively maintained. It's a solid choice for most WordPress installations.

No known CVEs Updated 6yr ago

Risk Assessment

The 'super-host-speed-benchmark' plugin exhibits a mixed security posture. On the positive side, it has a very small attack surface, with no apparent AJAX handlers, REST API routes, or shortcodes exposed. Its vulnerability history is clean, with no recorded CVEs, suggesting a potentially well-maintained or less targeted plugin. However, significant concerns arise from the code analysis. The plugin entirely lacks nonce and capability checks, which is a major oversight for security. Furthermore, a substantial portion of its SQL queries (83%) are not using prepared statements, posing a risk of SQL injection. All output is unescaped, creating a high risk of Cross-Site Scripting (XSS) vulnerabilities. Taint analysis also indicates flows with unsanitized paths, though no critical or high severity issues were flagged in this specific analysis run. The presence of unsanitized paths, coupled with the lack of input validation and output escaping, indicates a potential for vulnerabilities that could be exploited if an attacker can influence the data flowing through these paths.

Key Concerns

No nonce checks detected
No capability checks detected
SQL queries not using prepared statements
Output escaping not properly implemented
Flows with unsanitized paths detected

Vulnerabilities

None known

Super Host Speed Benchmark Security Vulnerabilities

No known vulnerabilities — this is a good sign.

Code Analysis

Analyzed Mar 17, 2026

Super Host Speed Benchmark Code Analysis

Dangerous Functions

Raw SQL Queries

1 prepared

Unescaped Output

0 escaped

Nonce Checks

Capability Checks

File Operations

External Requests

Bundled Libraries

SQL Query Safety

17% prepared6 total queries

Output Escaping

0% escaped8 total outputs

Data Flows

2 unsanitized

Data Flow Analysis

2 flows2 with unsanitized paths

shsb_calculate_score (shsb.php:131)

Source (user input) Sink (dangerous op) Sanitizer Transform Unsanitized Sanitized

Attack Surface

Super Host Speed Benchmark Attack Surface

Entry Points0

Unprotected0

WordPress Hooks 5

actionadmin_menushsb.php:17

actionadmin_initshsb.php:18

actionadmin_menushsb.php:129

actionshsb_cronshsb.php:416

filterauto_update_pluginshsb.php:445

Scheduled Events 1

shsb_cron

Maintenance & Trust

Super Host Speed Benchmark Maintenance & Trust

Maintenance Signals

WordPress version tested5.2.24

Last updatedNov 7, 2019

PHP min version5.2.4

Downloads2K

Community Trust

Rating20/100

Number of ratings1

Active installs10

Alternatives

Super Host Speed Benchmark Alternatives

Speedtest Pro

speedtest-pro

100

Speedtest Pro analyzes your site's performance with comprehensive server benchmarks and speed testing tools.

30 No CVEs

WP Speed of Light

wp-speed-of-light

100

WP Speed of Light is a WordPress speedup plugin and load time testing. Cache, Gzip, minify, group, Lazy Loading, CDN

7K No CVEs

Hosting Benchmark tool

wpbenchmark

Benchmark your hosting server CPU, memory and disk, compare with others using simple Wordpress plugin.

4K 1 CVE

PHP Vitals

php-vitals

100

How fast is your web host? Dozens of PHP speed tests, 1 overall grade: The easy way to compare hosting performance.

400 No CVEs

Calculate Page Execution Time

calculate-page-execution-time

100

Track page execution time easily. Just activate and view page source to see the loading time at the bottom. No configuration needed for WordPress.

10 No CVEs

Developer Profile

Super Host Speed Benchmark Developer Profile

wsec1

1 plugin · 10 total installs

trust score

Avg Security Score

85/100

Avg Patch Time

30 days

View full developer profile

Detection Fingerprints

How We Detect Super Host Speed Benchmark

Patterns used to identify this plugin on WordPress sites during automated security audits and web crawling.

Asset Fingerprints

Asset Paths

/wp-content/plugins/super-host-speed-benchmark/gauge.min.js

Script Paths