
ACF Post Types TMC Security & Risk Analysis
wordpress.org/plugins/acf-post-types-tmcSelect field for choosing a WordPress Post Types for a radio populated with post types. Add-on for Advanced Custom Fields.
Is ACF Post Types TMC Safe to Use in 2026?
Generally Safe
Score 85/100ACF Post Types TMC has no known CVEs and is actively maintained. It's a solid choice for most WordPress installations.
The "acf-post-types-tmc" plugin, version 1.0.2, demonstrates a strong security posture based on the provided static analysis. The plugin has zero identified attack surface entry points (AJAX, REST API, shortcodes, cron events) that are unprotected. Furthermore, it exhibits excellent code hygiene by avoiding dangerous functions, performing all SQL queries using prepared statements, properly escaping all identified output, and not engaging in file operations or external HTTP requests. Taint analysis also reveals no critical or high severity issues, indicating a lack of unsanitized data flows.
The vulnerability history is also exceptionally clean, with no known CVEs associated with this plugin. This lack of historical vulnerabilities, combined with the robust static analysis findings, suggests that the developers have prioritized security. However, it is worth noting that the plugin has zero capability checks and zero nonce checks. While the absence of entry points currently mitigates the risk associated with these omissions, any future expansion of functionality that introduces new entry points without proper authentication and authorization mechanisms could introduce significant vulnerabilities.
In conclusion, the "acf-post-types-tmc" plugin v1.0.2 is currently highly secure. Its strengths lie in its minimal attack surface and diligent coding practices concerning SQL and output handling. The primary weakness, though currently not exploitable due to the lack of exposed functionality, is the absence of nonces and capability checks, which could become a concern if the plugin's features expand without corresponding security enhancements.
Key Concerns
- No capability checks found
- No nonce checks found
ACF Post Types TMC Security Vulnerabilities
ACF Post Types TMC Release Timeline
ACF Post Types TMC Code Analysis
Output Escaping
ACF Post Types TMC Attack Surface
WordPress Hooks 3
Maintenance & Trust
ACF Post Types TMC Maintenance & Trust
Maintenance Signals
Community Trust
ACF Post Types TMC Alternatives
ACF qTranslate
acf-qtranslate
Provides qTranslate compatible ACF field types for Text, Text Area, WYSIWYG, Image and File.
ACF Single Relationship Add New
acf-single-relationship-add-new
Add a new related item while editing a post, without leaving the current post.
ACF Content Analysis for Yoast SEO
acf-content-analysis-for-yoast-seo
WordPress plugin that adds the content of all ACF fields to the Yoast SEO score analysis.
Advanced Custom Fields: Font Awesome Field
advanced-custom-fields-font-awesome
Adds a new 'Font Awesome Icon' field to the popular Advanced Custom Fields plugin.
Table Field Add-on for ACF and SCF
advanced-custom-fields-table-field
A Table Field Add-on for the Advanced Custom Fields and Secure Custom Fields Plugin.
ACF Post Types TMC Developer Profile
3 plugins · 1K total installs
How We Detect ACF Post Types TMC
Patterns used to identify this plugin on WordPress sites during automated security audits and web crawling.
Asset Fingerprints
/wp-content/plugins/acf-post-types-tmc/assets/js/fieldGroupsModificator.js/wp-content/plugins/acf-post-types-tmc/assets/js/fieldGroupsModificator.jsacf-post-types-tmc/assets/js/fieldGroupsModificator.js?ver=HTML / DOM Fingerprints
ACF v5ACF v4