Breeze Cache

breeze · by cloudways · wordpress.org ↗ · SVN ↗

Acquired by Cloudways (DigitalOcean). New committers from that team's naming convention are expected and will not fire takeover events. source ↗

Active installs: 400k+
Current version: 2.4.7
Added: 2017-07-22
Last updated: 2026-04-29 (3d ago)
First seen by beacon: 10d ago
Total downloads: 14,594,666

Alerts (0)

No open alerts.

Show 3 resolved alerts

Critical code_pattern Resolved · no_longer_matches 2026-04-24 17:01:47 (7d ago)

Slug	breeze
Pattern	`unserialize_after_remote_call`
Kind	`builtin`
Version	`2.4.5`
Hit count	1
First hit	File `inc/cache/execute-cache.php` Line 643 Snippet L640: $cacheFile = file_get_contents( $path ); → L643: $datas = unserialize( $cacheFile );
Explanation	a remote HTTP fetch (`wp_remote_*`/`curl_exec`/`file_get_contents`) is followed by `@unserialize` within the same file — classic PHP Object Injection C2 gadget used by EP and most WP supply-chain backdoors. The error-suppressed form is the tell: legit code wants to know when deserialize fails; attackers suppress so malformed gadgets do not leak.

View raw JSON

{
    "slug": "breeze",
    "pattern": "unserialize_after_remote_call",
    "kind": "builtin",
    "version": "2.4.5",
    "hit_count": 1,
    "first_hit": {
        "file": "inc/cache/execute-cache.php",
        "line": 643,
        "snippet": "L640: $cacheFile = file_get_contents( $path );  \u2192  L643: $datas = unserialize( $cacheFile );"
    },
    "explanation": "a remote HTTP fetch (`wp_remote_*`/`curl_exec`/`file_get_contents`) is followed by `@unserialize` within the same file \u2014 classic PHP Object Injection C2 gadget used by EP and most WP supply-chain backdoors. The error-suppressed form is the tell: legit code wants to know when deserialize fails; attackers suppress so malformed gadgets do not leak."
}

Critical code_scan_delta Resolved · fp_local_disk_cache 2026-04-24 15:57:56 (7d ago)

Slug breeze

Previous version 2.4.5

Current version 2.4.5

New findings

Pattern	Kind	File	Line	Snippet	Confidence
`unserialize_after_remote_call`	`builtin`	`inc/cache/execute-cache.php`	643	L640: $cacheFile = file_get_contents( $path ); → L643: $datas = unserialize( $cacheFile );	`high`

New finding count 1

View raw JSON

{
    "slug": "breeze",
    "previous_version": "2.4.5",
    "current_version": "2.4.5",
    "new_findings": [
        {
            "pattern": "unserialize_after_remote_call",
            "kind": "builtin",
            "file": "inc/cache/execute-cache.php",
            "line": 643,
            "snippet": "L640: $cacheFile = file_get_contents( $path );  \u2192  L643: $datas = unserialize( $cacheFile );",
            "confidence": "high"
        }
    ],
    "new_finding_count": 1
}

Critical new_committer_young_account Resolved · no_longer_matches 2026-04-23 19:05:03 (8d ago)

Slug	breeze
Committer	owaisalam
Display name	`owaisalam`
Member since	2024-04-02
First commit at	2024-05-27 08:31:51
Account age at first commit	55
Commit count	188
Active installs	400,000

View raw JSON

{
    "slug": "breeze",
    "committer": "owaisalam",
    "display_name": "owaisalam",
    "member_since": "2024-04-02",
    "first_commit_at": "2024-05-27 08:31:51",
    "account_age_at_first_commit": 55,
    "commit_count": 188,
    "active_installs": 400000
}

SVN committers (2)

Accounts with actual commit access to breeze on plugins.svn.wordpress.org, reconstructed from svn log. This is the list that matters for ownership changes — not the readme contributors.

Committer	Member since	Commits	First commit	Latest commit
adeelkhan	2017-06-10	12	2022-03-15 · r2694075	2024-04-22 · r3074985
owaisalam Young account	2024-04-02	1	2024-05-27 · r3092966	2026-04-29 · r3518426

Readme contributors (1)

Names the plugin's readme declares as contributors. A soft signal — anyone can be listed. The SVN access column is the ground-truth cross-reference: does this contributor actually commit code?

Contributor	Member since	SVN access	Status
Cloudways	2015-11-30	—	Active

Versions (100 most recent)

Version	Released	Download
2.4.7	2026-04-29 · 3d ago	zip
2.4.6	2026-04-28 · 4d ago	zip
2.4.5	2026-04-21 · 11d ago	zip
2.4.4	2026-04-08 · 24d ago	zip
2.4.3	2026-04-06 · 26d ago	zip
2.4.2	2026-03-16 · 1mo ago	zip
2.4.1	2026-03-03 · 2mo ago	zip
2.4.0	2026-03-02 · 2mo ago	zip
2.3.1	2026-02-10 · 2mo ago	zip
2.3.0	2026-02-09 · 2mo ago	zip
2.2.24	2026-01-26 · 3mo ago	zip
2.2.23	2026-01-13 · 3mo ago	zip
2.2.22	2025-12-22 · 4mo ago	zip
2.2.21	2025-11-12 · 5mo ago	zip
2.2.20	2025-09-24 · 7mo ago	zip
2.2.19	2025-09-16 · 7mo ago	zip
2.2.18	2025-09-03 · 8mo ago	zip
2.2.17	2025-08-29 · 8mo ago	zip
2.2.16	2025-07-16 · 9mo ago	zip
2.2.15	2025-07-07 · 9mo ago	zip
2.2.14	2025-06-18 · 10mo ago	zip
2.2.13	2025-06-12 · 10mo ago	zip
2.2.12	2025-06-11 · 10mo ago	zip
2.2.11	2025-06-02 · 11mo ago	zip
2.2.10	2025-05-05 · 12mo ago	zip
2.2.9	2025-04-10 · 1y ago	zip
2.2.8	2025-03-20 · 1y ago	zip
2.2.7	2025-03-13 · 1y ago	zip
2.2.6	2025-03-06 · 1y ago	zip
2.2.5	2025-03-06 · 1y ago	zip
2.2.4	2025-02-18 · 1y ago	zip
2.2.3	2025-02-18 · 1y ago	zip
2.2.2	2025-02-06 · 1y ago	zip
2.2.1	2025-01-08 · 1y ago	zip
2.2.0	2024-12-11 · 1y ago	zip
2.1.20	2024-12-02 · 1y ago	zip
2.1.19	2024-11-14 · 1y ago	zip
2.1.18	2024-10-31 · 1y ago	zip
2.1.17	2024-10-24 · 1y ago	zip
2.1.16	2024-10-22 · 1y ago	zip
2.1.15	2024-10-09 · 1y ago	zip
2.1.14	2024-09-12 · 1y ago	zip
2.1.13	2024-08-29 · 1y ago	zip
2.1.12	2024-08-22 · 1y ago	zip
2.1.11	2024-07-04 · 1y ago	zip
2.1.10	2024-07-02 · 1y ago	zip
2.1.9	2024-06-05 · 1y ago	zip
2.1.8	2024-05-29 · 1y ago	zip
2.1.7	2024-04-22 · 2y ago	zip
2.1.6	2024-03-15 · 2y ago	zip
2.1.5	2024-03-14 · 2y ago	zip
2.1.4	2024-02-15 · 2y ago	zip
2.1.3	2024-01-04 · 2y ago	zip
2.1.2	2023-12-19 · 2y ago	zip
2.1.1	2023-12-18 · 2y ago	zip
2.1.0	2023-12-18 · 2y ago	zip
2.0.33	2023-12-06 · 2y ago	zip
2.0.32	2023-11-14 · 2y ago	zip
2.0.31	2023-10-23 · 2y ago	zip
2.0.30	2023-10-03 · 2y ago	zip
2.0.29	2023-08-28 · 2y ago	zip
2.0.28	2023-07-31 · 2y ago	zip
2.0.27	2023-07-06 · 2y ago	zip
2.0.26	2023-06-22 · 2y ago	zip
2.0.25	2023-06-14 · 2y ago	zip
2.0.24	2023-06-09 · 2y ago	zip
2.0.23	2023-06-07 · 2y ago	zip
2.0.22	2023-05-17 · 2y ago	zip
2.0.21	2023-05-02 · 3y ago	zip
2.0.20	2023-04-13 · 3y ago	zip
2.0.19	2023-04-12 · 3y ago	zip
2.0.18	2023-03-20 · 3y ago	zip
2.0.17	2023-02-20 · 3y ago	zip
2.0.16	2023-02-14 · 3y ago	zip
2.0.15	2023-01-18 · 3y ago	zip
2.0.14	2022-11-23 · 3y ago	zip
2.0.13	2022-11-21 · 3y ago	zip
2.0.12	2022-11-18 · 3y ago	zip
2.0.11	2022-11-09 · 3y ago	zip
2.0.10	2022-10-17 · 3y ago	zip
2.0.9	2022-09-19 · 3y ago	zip
2.0.8	2022-08-25 · 3y ago	zip
2.0.7	2022-07-20 · 3y ago	zip
2.0.6	2022-06-27 · 3y ago	zip
2.0.5	2022-05-26 · 3y ago	zip
2.0.4	2022-05-09 · 3y ago	zip
2.0.3	2022-04-19 · 4y ago	zip
2.0.2	2022-03-15 · 4y ago	zip
2.0.1	2022-01-11 · 4y ago	zip
2.0.0	2022-01-11 · 4y ago	zip
1.2.6	2021-10-12 · 4y ago	zip
1.2.5	2021-08-25 · 4y ago	zip
1.2.4	2021-08-03 · 4y ago	zip
1.2.3	2021-07-27 · 4y ago	zip
1.2.2	2021-06-22 · 4y ago	zip
1.2.1	2021-05-20 · 4y ago	zip
1.2.0	2021-05-10 · 4y ago	zip
1.1.11	2021-04-20 · 5y ago	zip
1.1.10	2021-04-01 · 5y ago	zip
1.1.9	2021-03-11 · 5y ago	zip