Does WP Speed 404 have any unpatched vulnerabilities?

No. All known vulnerabilities in WP Speed 404 have been patched as of the latest data update. Always keep the plugin updated to the latest version.

Is WP Speed 404 compatible with WordPress 4.8.28?

According to WordPress.org data, WP Speed 404 1.0 has been tested up to WordPress 4.8.28. Check the plugin's changelog for the latest compatibility information.

How often is WP Speed 404 updated?

WP Speed 404 was last updated on Sep 18, 2017. Frequent updates are generally a positive security signal.

What is WP Speed 404's security score?

WP Speed 404 has a WP-Safety security score of 85/100. This score is computed from CVE history, patch response time, developer trust signals, and plugin maintenance activity.

WP Speed 404 Security & Risk Analysis

wordpress.org/plugins/wp-speed-404

WP Speed 404 can either suppress or log any 404 errors affecting your site under wp-content, wp-admin and wp-includes (configurable).

200 active installs v1.0 PHP + WP 4.2+ Updated Sep 18, 2017

404performancespeed

A · Safe

CVEs total0

Unpatched0

Last CVENever

Download

Safety Verdict

Is WP Speed 404 Safe to Use in 2026?

Generally Safe

Score 85/100

WP Speed 404 has no known CVEs and is actively maintained. It's a solid choice for most WordPress installations.

No known CVEs Updated 8yr ago

Risk Assessment

The wp-speed-404 plugin v1.0 exhibits a generally strong security posture based on the provided static analysis. The plugin demonstrates good practices by having no AJAX handlers, REST API routes, shortcodes, or cron events, which significantly limits its attack surface. Furthermore, the absence of dangerous functions, file operations, and external HTTP requests are positive indicators. The use of prepared statements for all SQL queries and the presence of nonce and capability checks are also commendable security measures.

Key Concerns

Flows with unsanitized paths
Output escaping not fully implemented

Vulnerabilities

None known

WP Speed 404 Security Vulnerabilities

No known vulnerabilities — this is a good sign.

Code Analysis

Analyzed Mar 16, 2026

WP Speed 404 Code Analysis

Dangerous Functions

Raw SQL Queries

0 prepared

Unescaped Output

7 escaped

Nonce Checks

Capability Checks

File Operations

External Requests

Bundled Libraries

Output Escaping

78% escaped9 total outputs

Data Flows

1 unsanitized

Data Flow Analysis

2 flows1 with unsanitized paths

redirect (controllers\WPSpeed404_SettingsController.php:66)

Source (user input) Sink (dangerous op) Sanitizer Transform Unsanitized Sanitized

Attack Surface

WP Speed 404 Attack Surface

Entry Points0

Unprotected0

WordPress Hooks 6

actionadmin_initcontrollers\WPSpeed404_SettingsController.php:15

actionadmin_menucontrollers\WPSpeed404_SettingsController.php:16

actionadmin_headcontrollers\WPSpeed404_SettingsController.php:17

actionadmin_noticescontrollers\WPSpeed404_SettingsController.php:18

filtermod_rewrite_rulesinclude\WPSpeed404_Engine.php:21

actiontemplate_redirectinclude\WPSpeed404_Engine.php:25

Maintenance & Trust

WP Speed 404 Maintenance & Trust

Maintenance Signals

WordPress version tested4.8.28

Last updatedSep 18, 2017

PHP min version

Downloads7K

Community Trust

Rating100/100

Number of ratings3

Active installs200

Alternatives

WP Speed 404 Alternatives

LiteSpeed Cache

litespeed-cache

All-in-one unbeatable acceleration & PageSpeed improvement: caching, image/CSS/JS optimization...

7.0M 18 CVEs

Speed Optimizer – The All-In-One Performance-Boosting Plugin

sg-cachepress

Boost your website performance and page speed, and increase conversions with powerful caching, frontend, media, and environment optimizations.

1.0M 2 CVEs

WP Fastest Cache – WordPress Cache Plugin

wp-fastest-cache

The simplest and fastest WP Cache system

1.0M 35 CVEs

Autoptimize

autoptimize

Autoptimize speeds up your website by optimizing JS, CSS, images (incl. lazy-load), HTML and Google Fonts, asyncing JS, removing emoji cruft and more.

900K 10 CVEs

W3 Total Cache

w3-total-cache

Search Engine (SEO) & Performance Optimization (WPO) via caching. Integrated caching: CDN, Page, Minify, Object, Fragment, Database support.

900K 28 CVEs

Developer Profile

WP Speed 404 Developer Profile

Michael Thomas

1 plugin · 200 total installs

trust score

Avg Security Score

85/100

Avg Patch Time

30 days

View full developer profile

Detection Fingerprints

How We Detect WP Speed 404

Patterns used to identify this plugin on WordPress sites during automated security audits and web crawling.

Asset Fingerprints

Asset Paths

/wp-content/plugins/wp-speed-404/assets/

HTML / DOM Fingerprints

FAQ