Does AIKTP have any unpatched vulnerabilities?

No. All known vulnerabilities in AIKTP have been patched as of the latest data update. Always keep the plugin updated to the latest version.

Is AIKTP compatible with WordPress 6.9.4?

According to WordPress.org data, AIKTP 5.0.5 has been tested up to WordPress 6.9.4. Check the plugin's changelog for the latest compatibility information.

Is AIKTP compatible with PHP 7.0+?

AIKTP requires PHP 7.0 or higher. Most modern WordPress hosts run PHP 8.1 or 8.2. If you are on an older PHP version, consider upgrading before installing this plugin.

How often is AIKTP updated?

AIKTP was last updated on Jan 23, 2026. Frequent updates are generally a positive security signal.

What is AIKTP's security score?

AIKTP has a WP-Safety security score of 99/100. This score is computed from CVE history, patch response time, developer trust signals, and plugin maintenance activity.

AIKTP Security & Risk Analysis

wordpress.org/plugins/aiktp

AI-powered content automation. Generate SEO-optimized articles and WooCommerce product descriptions with bulk generation support.

3K active installs v5.0.5 PHP 7.0+ WP 5.8+ Updated Jan 23, 2026

aiautomationcontentseowoocommerce

A · Safe

CVEs total1

Unpatched0

Last CVEJan 23, 2026

Plugin page Download

Safety Verdict

Is AIKTP Safe to Use in 2026?

Generally Safe

Score 99/100

AIKTP has a strong security track record. Known vulnerabilities have been patched promptly.

1 known CVELast CVE: Jan 23, 2026Updated 2mo ago

Risk Assessment

The AI Toolkit Pro (aiktp) plugin v5.0.5 exhibits a mixed security posture. On the positive side, the plugin demonstrates strong practices regarding SQL queries, exclusively using prepared statements, and a high percentage of properly escaped output. Furthermore, there are no identified critical or high severity taint flows, indicating a generally good approach to handling potentially malicious data. The absence of dangerous functions and file operations is also a strength.

However, there are notable areas of concern. The plugin exposes a significant attack surface through AJAX handlers and REST API routes, with a substantial portion of these entry points lacking proper authorization checks (5 out of 14 total entry points). This presents a clear risk of unauthorized access or actions. While the plugin history shows no currently unpatched vulnerabilities, the presence of one past CVE, categorized as medium and related to missing authorization, suggests a recurring pattern that requires vigilance.

In conclusion, while AI Toolkit Pro v5.0.5 has implemented several sound security practices, the numerous unprotected entry points in its AJAX and REST API interfaces are a significant weakness. Coupled with a past vulnerability in a similar area, administrators should be particularly cautious and ensure robust access controls are in place on their WordPress installations. The plugin's strengths in SQL and output handling are commendable, but the attack surface concern remains the primary risk.

Key Concerns

Unprotected AJAX handlers
Unprotected REST API routes
Past medium severity vulnerability (Missing Auth)

Vulnerabilities

AIKTP Security Vulnerabilities

CVEs by Year

1 CVE in 2026

2026

Patched Has unpatched

Severity Breakdown

Medium

1 total CVE

CVE-2026-1103medium · 5.4Missing Authorization

AIKTP <= 5.0.04 - Missing Authorization to Authenticated (Subscriber+) Multiple Administrator Actions

Jan 23, 2026 Patched in 5.0.05 (1d)

Code Analysis

Analyzed Mar 16, 2026

AIKTP Code Analysis

Dangerous Functions

Raw SQL Queries

0 prepared

Unescaped Output

50 escaped

Nonce Checks

Capability Checks

File Operations

External Requests

Bundled Libraries

Output Escaping

91% escaped55 total outputs

Data Flows

All sanitized

Data Flow Analysis

4 flows

bulk_action_admin_notice (aiktp.php:817)

Source (user input) Sink (dangerous op) Sanitizer Transform Unsanitized Sanitized

Attack Surface

5 unprotected

AIKTP Attack Surface

Entry Points14

Unprotected5

AJAX Handlers 5

authwp_ajax_aiktpz_generate_contentaiktp.php:49

authwp_ajax_aiktpz_bulk_generateaiktp.php:50

authwp_ajax_aiktpz_get_bulk_productsaiktp.php:51

authwp_ajax_aiktp_regenerate_tokenaiktp.php:52

authwp_ajax_aiktp_connectincludes\aiktp-settings.php:25

REST API Routes 9

POST/wp-json/aiktp/createpostincludes\aiktp-sync.php:67

POST/wp-json/aiktp/doUploadImageToWPincludes\aiktp-sync.php:73

POST/wp-json/aiktp/getPostByURLincludes\aiktp-sync.php:80

GET/wp-json/aiktp/checkTokenincludes\aiktp-sync.php:86

GET/wp-json/aiktp/getCategoriesincludes\aiktp-sync.php:92

POST/wp-json/aiktp/getPostByTagsincludes\aiktp-sync.php:98

POST/wp-json/aiktp/getPostByIdincludes\aiktp-sync.php:104

POST/wp-json/aiktp/getAllPostsincludes\aiktp-sync.php:110

GET/wp-json/aiktp/getTokenincludes\aiktp-sync.php:120

WordPress Hooks 16

actionadmin_menuaiktp.php:46

actionadmin_enqueue_scriptsaiktp.php:47

actionadd_meta_boxesaiktp.php:48

actionadmin_initaiktp.php:53

filterbulk_actions-edit-productaiktp.php:56

filterhandle_bulk_actions-edit-productaiktp.php:57

actionrestrict_manage_postsaiktp.php:58

actionadmin_noticesaiktp.php:59

filterrest_authentication_errorsaiktp.php:62

actionbefore_woocommerce_initaiktp.php:992

actionplugins_loadedaiktp.php:999

actionplugins_loadedaiktp.php:1012

actionadmin_initincludes\aiktp-settings.php:23

actionadmin_enqueue_scriptsincludes\aiktp-settings.php:24

actionrest_api_initincludes\aiktp-sync.php:24

actionadmin_initincludes\aiktp-sync.php:27

Maintenance & Trust

AIKTP Maintenance & Trust

Maintenance Signals

WordPress version tested6.9.4

Last updatedJan 23, 2026

PHP min version7.0

Downloads3K

Community Trust

Rating0/100

Number of ratings0

Active installs3K

Alternatives

AIKTP Alternatives

Outrank

outrank

100

Outrank automatically creates and publishes SEO-optimized articles to your WordPress site as blog posts or drafts.

1K No CVEs

GetAutoSEO AI Tool

getautoseo-ai-content-publisher

100

Automate your SEO content creation and publishing with AI-powered tools. Generate high-quality articles and publish directly to WordPress.

700 No CVEs

Soro – SEO Autopilot & AI Content Writer

soro-seo

100

Connect your WordPress site to Soro for automatic AI-powered article publishing and SEO content automation.

500 No CVEs

MEGA AI

mega-ai

100

Connect your WordPress website to MEGA's AI-powered SEO platform for automated content optimization and growth.

100 No CVEs

RankJet AI-Powered SEO & Ranking Growth

rankjet-ai

100

Supercharge your organic growth. Seamlessly connect WordPress to RankJet AI for automated content intelligence, real-time SEO scoring, and cloud-based …

90 No CVEs

Developer Profile

AIKTP Developer Profile

John Luke

1 plugin · 3K total installs

trust score

Avg Security Score

99/100

Avg Patch Time

1 days

View full developer profile

Detection Fingerprints

How We Detect AIKTP

Patterns used to identify this plugin on WordPress sites during automated security audits and web crawling.

Asset Fingerprints

Asset Paths

/wp-content/plugins/aiktp/assets/aiktp-token.js/wp-content/plugins/aiktp/assets/aiktp-admin.js/wp-content/plugins/aiktp/assets/aiktp-frontend.js/wp-content/plugins/aiktp/assets/css/aiktp-admin.css/wp-content/plugins/aiktp/assets/css/aiktp-frontend.css/wp-content/plugins/aiktp/assets/img/logo.aiktp.svg

Script Paths

/wp-content/plugins/aiktp/assets/aiktp-token.js/wp-content/plugins/aiktp/assets/aiktp-admin.js/wp-content/plugins/aiktp/assets/aiktp-frontend.js

Version Parameters

aiktp-token?ver=aiktp-admin?ver=aiktp-frontend?ver=aiktp-admin.css?ver=aiktp-frontend.css?ver=logo.aiktp.svg?ver=

HTML / DOM Fingerprints

CSS Classes

wcai-generator-controlswcai-generate-btnicon-textwcai-statuswcai-message

Data Attributes

data-type

JS Globals

AIKTPZ_AJAX_URLAIKTPZ_NONCEAIKTPZ_PRODUCT_ID

REST Endpoints

/wp-json/aiktp/v1/sync/posts

FAQ