Does All in one demo Export/Import have any unpatched vulnerabilities?

No published vulnerabilities and no findings under coordinated disclosure as of the latest data update. Always keep the plugin updated to the latest version.

Is All in one demo Export/Import compatible with WordPress 4.9.29?

According to WordPress.org data, All in one demo Export/Import 0.1 has been tested up to WordPress 4.9.29. Check the plugin's changelog for the latest compatibility information.

How often is All in one demo Export/Import updated?

All in one demo Export/Import was last updated on Dec 26, 2017. Frequent updates are generally a positive security signal.

What is All in one demo Export/Import's security score?

All in one demo Export/Import has a WP-Safety security score of 85/100. This score is computed from CVE history, patch response time, developer trust signals, and plugin maintenance activity.

All in one demo Export/Import Security & Risk Analysis

wordpress.org/plugins/all-in-one-demo-importexport

Easily export or import your WordPress customizer settings!

20 active installs v0.1 PHP + WP 3.6+ Updated Dec 26, 2017

authorscustom-taxonomiescustomizerpages-and-other-custom-post-typesposts

A · Safe

CVEs total0

Unpatched0

Last CVENever

Plugin page Download

Safety Verdict

Is All in one demo Export/Import Safe to Use in 2026?

Generally Safe

Score 85/100

All in one demo Export/Import has no known CVEs and is actively maintained. It's a solid choice for most WordPress installations.

No known CVEs Updated 8yr ago

Risk Assessment

The 'all-in-one-demo-importexport' plugin v0.1 exhibits a mixed security posture. On the positive side, it has a very small attack surface with no exposed AJAX handlers, REST API routes, shortcodes, or cron events. The taint analysis shows no critical or high severity flows with unsanitized paths, which is encouraging. Furthermore, there is no known vulnerability history, suggesting a relatively clean past. However, the presence of the 'unserialize' function is a significant concern, as it can lead to remote code execution if used with untrusted input. While some SQL queries are prepared, the fact that 50% are not, coupled with the existence of file operations, warrants caution. The limited nonce and capability checks also suggest potential areas for unauthorized access if input validation is not robust throughout the plugin's functionality.

Key Concerns

Use of unserialize() function
50% of SQL queries not prepared
16 total outputs, 25% not escaped
1 capability check for 0 entry points

Vulnerabilities

None known

All in one demo Export/Import Security Vulnerabilities

No known vulnerabilities — this is a good sign.

Version History

All in one demo Export/Import Release Timeline

v0.1Current

Code Analysis

Analyzed Mar 16, 2026

All in one demo Export/Import Code Analysis

Dangerous Functions

Raw SQL Queries

2 prepared

Unescaped Output

12 escaped

Nonce Checks

Capability Checks

File Operations

External Requests

Bundled Libraries

Dangerous Functions Found

unserialize$data = @unserialize( $raw );classes\class-aiodie-core.php:698

SQL Query Safety

50% prepared4 total queries

Output Escaping

75% escaped16 total outputs

Data Flows · Security

All sanitized

Data Flow Analysis

3 flows

_export (classes\class-aiodie-core.php:144)

Source (user input) Sink (dangerous op) Sanitizer Transform Unsanitized Sanitized

Attack Surface

All in one demo Export/Import Attack Surface

Entry Points0

Unprotected0

WordPress Hooks 5

actionplugins_loadedall-in-one-demo-import-export.php:21

actioncustomize_controls_print_scriptsall-in-one-demo-import-export.php:22

actioncustomize_controls_enqueue_scriptsall-in-one-demo-import-export.php:23

actioncustomize_registerall-in-one-demo-import-export.php:24

actioncustomize_registerall-in-one-demo-import-export.php:25

Maintenance & Trust

All in one demo Export/Import Maintenance & Trust

Maintenance Signals

WordPress version tested4.9.29

Last updatedDec 26, 2017

PHP min version

Downloads2K

Community Trust

Rating0/100

Number of ratings0

Active installs20

Alternatives

All in one demo Export/Import Alternatives

MB Custom Post Types & Custom Taxonomies

mb-custom-post-type

Create and manage custom post types and custom taxonomies with an easy-to-use UI in WordPress.

10K 1 CVE

Customize Posts

customize-posts

Edit posts and postmeta in the Customizer. Stop editing your posts/postmeta blind!

1K No CVEs

List all posts by Authors, nested Categories and Titles

list-all-posts-by-authors-nested-categories-and-titles

This plugin lists all posts by Author, nested Categories and Title, allowing to place the lists in any page.

700 1 CVE

Author Recent Posts

author-recent-posts

Author Recent Posts shows recent posts by an author on the posts written by the author as a responsive widget. This plugin is useful for multi-author …

100 No CVEs

Authors Posts Widget

authors-posts-widget

100

Authors posts widget with blogger style.

100 No CVEs

Developer Profile

All in one demo Export/Import Developer Profile

Sanyogg Shelar

3 plugins · 40 total installs

trust score

Avg Security Score

85/100

Avg Patch Time

30 days

View full developer profile

Detection Fingerprints

How We Detect All in one demo Export/Import

Patterns used to identify this plugin on WordPress sites during automated security audits and web crawling.

Asset Fingerprints

Asset Paths

/wp-content/plugins/all-in-one-demo-import-export/css/customizer.css/wp-content/plugins/all-in-one-demo-import-export/js/customizer.js

Script Paths

/wp-content/plugins/all-in-one-demo-import-export/js/customizer.js

Version Parameters

all-in-one-demo-import-export/css/customizer.css?ver=all-in-one-demo-import-export/js/customizer.js?ver=

HTML / DOM Fingerprints

CSS Classes

aiodie-section

Data Attributes

data-customize-setting-link='aiodie-setting'

JS Globals

AIODIEl10nAIODIEConfig

FAQ