PLUGIN SECURITY
Is Sg Cachepress safe?
Known vulnerabilities, PHP compatibility and safer alternatives for the Sg Cachepress WordPress plugin — checked against WP Clinic's local security database.
Plugin details
- Slug:
sg-cachepress - Requires PHP: 7.0+
- Max supported PHP (analyzed): 8.4
Known vulnerabilities
- Speed Optimizer – The All-In-One Performance-Boosting Plugin [sg-cachepress] < 5.0.13 [SiteGround Optimizer <= 5.0.12 - Missing Authorization]
- Speed Optimizer – The All-In-One Performance-Boosting Plugin [sg-cachepress] < 5.0.13 [SG Optimizer <= 5.0.12 - Unauthenticated File Upload]
- Speed Optimizer – The All-In-One Performance-Boosting Plugin [sg-cachepress] < 7.5.0 [CVE-2024-32532, WordPress Speed Optimizer Plugin <= 7.4.6 is vulnerable to Broken Access Control, Speed Optimizer <= 7.4.6 - Missing Authorization via purge_on_other_events()]
- Speed Optimizer – The All-In-One Performance-Boosting Plugin [sg-cachepress] < 5.0.13 [CVE-2019-25217]
- Speed Optimizer – The All-In-One Performance-Boosting Plugin [sg-cachepress] < 7.7.9 [CVE-2026-3220, WordPress Speed Optimizer Plugin < 7.7.9 is vulnerable to Cross Site Scripting (XSS)]
Vulnerabilities are matched against the exact installed version when it's known. Always keep the plugin updated to the latest release.
Safer / more established alternatives
- LiteSpeed Cache — 7000000+ active installs — max PHP 8.4
- WP Super Cache — 1000000+ active installs — max PHP 8.4
- WP-Optimize – Cache, Compress images, Minify & Clean database to boost page speed & performance — 1000000+ active installs — max PHP <8.0
- W3 Total Cache — 900000+ active installs
- Redis Object Cache — 400000+ active installs
Check your own WordPress site
Run a free passive scan now, or create a free account and install the WP Clinic plugin for a deep scan of your whole hosting account and AI-assisted repair.