Does HyperPress: Modern Hypermedia for WordPress have any unpatched vulnerabilities?

No. All known vulnerabilities in HyperPress: Modern Hypermedia for WordPress have been patched as of the latest data update. Always keep the plugin updated to the latest version.

Is HyperPress: Modern Hypermedia for WordPress compatible with WordPress 6.9.4?

According to WordPress.org data, HyperPress: Modern Hypermedia for WordPress 3.0.5 has been tested up to WordPress 6.9.4. Check the plugin's changelog for the latest compatibility information.

Is HyperPress: Modern Hypermedia for WordPress compatible with PHP 8.2+?

HyperPress: Modern Hypermedia for WordPress requires PHP 8.2 or higher. Most modern WordPress hosts run PHP 8.1 or 8.2. If you are on an older PHP version, consider upgrading before installing this plugin.

How often is HyperPress: Modern Hypermedia for WordPress updated?

HyperPress: Modern Hypermedia for WordPress was last updated on Jan 17, 2026. Frequent updates are generally a positive security signal.

What is HyperPress: Modern Hypermedia for WordPress's security score?

HyperPress: Modern Hypermedia for WordPress has a WP-Safety security score of 100/100. This score is computed from CVE history, patch response time, developer trust signals, and plugin maintenance activity.

HyperPress: Modern Hypermedia for WordPress Security & Risk Analysis

wordpress.org/plugins/api-for-htmx

Supercharge WordPress with Hypermedia. Build interactive blocks & pages with Datastar, HTMX or Alpine Ajax—all using simple PHP. No JS required.

10 active installs v3.0.5 PHP 8.2+ WP 6.5+ Updated Jan 17, 2026

ajaxalpinejsdatastarhtmxhypermedia

A · Safe

CVEs total0

Unpatched0

Last CVENever

Plugin page Download

Safety Verdict

Is HyperPress: Modern Hypermedia for WordPress Safe to Use in 2026?

Generally Safe

Score 100/100

HyperPress: Modern Hypermedia for WordPress has no known CVEs and is actively maintained. It's a solid choice for most WordPress installations.

No known CVEs Updated 2mo ago

Risk Assessment

The 'api-for-htmx' v3.0.5 plugin demonstrates a generally strong security posture, with no recorded vulnerabilities and a lack of critical issues identified in static analysis. The plugin effectively utilizes prepared statements for a majority of its SQL queries and implements a good proportion of output escaping, indicating an awareness of common web security pitfalls. The presence of nonce and capability checks further reinforces its defensive coding practices. However, there are a few areas that warrant attention.

The static analysis reveals three flows with unsanitized paths, which, although not flagged as critical or high severity in the taint analysis, represent a potential risk. These could lead to directory traversal or other path manipulation vulnerabilities if not properly handled within the plugin's logic. While the overall attack surface is reported as zero, the existence of these unsanitized paths suggests that internal logic might still be susceptible to manipulation. The vulnerability history being completely clean is a positive indicator, suggesting a mature and well-maintained codebase over time.

In conclusion, 'api-for-htmx' v3.0.5 is likely a secure plugin for most use cases, benefiting from robust security practices. The primary concern lies with the identified unsanitized paths, which should be thoroughly reviewed and remediated to eliminate any potential for exploitation. The absence of critical findings and historical vulnerabilities is a significant strength.

Key Concerns

Flows with unsanitized paths found
SQL queries not using prepared statements (33%)
Output escaping not properly implemented (22%)

Vulnerabilities

None known

HyperPress: Modern Hypermedia for WordPress Security Vulnerabilities

No known vulnerabilities — this is a good sign.

Code Analysis

Analyzed Mar 17, 2026

HyperPress: Modern Hypermedia for WordPress Code Analysis

Dangerous Functions

Raw SQL Queries

2 prepared

Unescaped Output

141 escaped

Nonce Checks

Capability Checks

File Operations

External Requests

Bundled Libraries

SQL Query Safety

67% prepared3 total queries

Output Escaping

78% escaped181 total outputs

Data Flows

3 unsanitized

Data Flow Analysis

6 flows3 with unsanitized paths

hxwp_send_header_response (includes\deprecated.php:233)

Source (user input) Sink (dangerous op) Sanitizer Transform Unsanitized Sanitized

Attack Surface

HyperPress: Modern Hypermedia for WordPress Attack Surface

Entry Points0

Unprotected0

WordPress Hooks 13

actionadmin_noticesbootstrap.php:32

actionafter_setup_themebootstrap.php:95

actionafter_setup_themebootstrap.php:256

actioninitsrc\Admin\Options.php:31

actionwp_enqueue_scriptssrc\Assets.php:50

actionadmin_enqueue_scriptssrc\Assets.php:51

actionenqueue_block_editor_assetssrc\Assets.php:53

actioninitsrc\Blocks\Registry.php:65

actionrest_api_initsrc\Blocks\RestApi.php:35

filterthe_contentsrc\Compatibility.php:26

actioninitsrc\Main.php:363

actiontemplate_redirectsrc\Main.php:364

actionwp_headsrc\Main.php:365

Maintenance & Trust

HyperPress: Modern Hypermedia for WordPress Maintenance & Trust

Maintenance Signals

WordPress version tested6.9.4

Last updatedJan 17, 2026

PHP min version8.2

Downloads3K

Community Trust

Rating100/100

Number of ratings2

Active installs10

Alternatives

HyperPress: Modern Hypermedia for WordPress Alternatives

Ivory Search – WordPress Search Plugin

add-search-to-menu

Advanced WordPress custom search plugin. Provides Search Form Customizer, WooCommerce Search, AJAX Search & Live Search support!

100K 11 CVEs

FiboSearch – Ajax Search for WooCommerce

ajax-search-for-woocommerce

The most popular WooCommerce product search plugin. Gives your users a well-designed advanced AJAX search bar with live search suggestions.

100K 3 CVEs

HUSKY – Products Filter Professional for WooCommerce

woocommerce-products-filter

HUSKY - WooCommerce Products Filter Professional (former name is WOOF) – flexible, easy and robust professional filter for products for WooCommerce

90K 23 CVEs

Heartbeat Control

heartbeat-control

Allows you to easily manage the frequency of the WordPress heartbeat API.

80K No CVEs

kk Star Ratings – Rate Post & Collect User Feedbacks

kk-star-ratings

kk Star Ratings allows blog visitors to involve and interact more effectively with your website by rating posts.

80K 4 CVEs

Developer Profile

HyperPress: Modern Hypermedia for WordPress Developer Profile

Esteban

2 plugins · 110 total installs

trust score

Avg Security Score

100/100

Avg Patch Time

30 days

View full developer profile

Detection Fingerprints

How We Detect HyperPress: Modern Hypermedia for WordPress

Patterns used to identify this plugin on WordPress sites during automated security audits and web crawling.

Asset Fingerprints

Asset Paths

/wp-content/plugins/api-for-htmx/assets/js/hyperblocks-editor.js

Script Paths

/wp-content/plugins/api-for-htmx/assets/libs/htmx.min.js/wp-content/plugins/api-for-htmx/assets/libs/_hyperscript.min.js/wp-content/plugins/api-for-htmx/assets/libs/alpinejs.min.js/wp-content/plugins/api-for-htmx/assets/libs/datastar.min.js/wp-content/plugins/api-for-htmx/assets/js/alpine-ajax.min.js

Version Parameters

api-for-htmx/assets/js/hyperblocks-editor.js?ver=api-for-htmx/assets/libs/htmx.min.js?ver=api-for-htmx/assets/libs/_hyperscript.min.js?ver=api-for-htmx/assets/libs/alpinejs.min.js?ver=api-for-htmx/assets/libs/datastar.min.js?ver=api-for-htmx/assets/js/alpine-ajax.min.js?ver=

HTML / DOM Fingerprints

Data Attributes

hx-boosthx-gethx-posthx-puthx-deletehx-patch+13 more

FAQ