The popular WordPress caching plugins WP Super Cache and W3 Total Cache, with around six million downloads between them, have both been found to have a vulnerability that allows remote users to use them to execute arbitrary PHP on the server. Cache plugins are designed to relieve the load on WordPress sites by saving the latest versions of pages in memory and serving the saved version to users fro