Does [凹凸曼]百度站内搜索和360站内搜索 have any unpatched vulnerabilities?

No. All known vulnerabilities in [凹凸曼]百度站内搜索和360站内搜索 have been patched as of the latest data update. Always keep the plugin updated to the latest version.

Is [凹凸曼]百度站内搜索和360站内搜索 compatible with WordPress 6.8.5?

According to WordPress.org data, [凹凸曼]百度站内搜索和360站内搜索 1.6.0 has been tested up to WordPress 6.8.5. Check the plugin's changelog for the latest compatibility information.

Is [凹凸曼]百度站内搜索和360站内搜索 compatible with PHP 7.4+?

[凹凸曼]百度站内搜索和360站内搜索 requires PHP 7.4 or higher. Most modern WordPress hosts run PHP 8.1 or 8.2. If you are on an older PHP version, consider upgrading before installing this plugin.

How often is [凹凸曼]百度站内搜索和360站内搜索 updated?

[凹凸曼]百度站内搜索和360站内搜索 was last updated on Apr 24, 2025. Frequent updates are generally a positive security signal.

What is [凹凸曼]百度站内搜索和360站内搜索's security score?

[凹凸曼]百度站内搜索和360站内搜索 has a WP-Safety security score of 100/100. This score is computed from CVE history, patch response time, developer trust signals, and plugin maintenance activity.

[凹凸曼]百度站内搜索和360站内搜索 Security & Risk Analysis

wordpress.org/plugins/apoyl-so

实现百度和360搜索免费为站长们开放了站内搜索工具，将代码加入网页中，您的网站即可获得同百度和360搜索一样强大的搜索功能，使用百度和360站内搜索，对于增加收录，提升体验，盘活流量具有明显帮助

10 active installs v1.6.0 PHP 7.4+ WP 6.0+ Updated Apr 24, 2025

360%e7%99%be%e5%ba%a6%e7%ab%99%e5%86%85so%e6%90%9c%e7%b4%a2

A · Safe

CVEs total0

Unpatched0

Last CVENever

Plugin page Download

Safety Verdict

Is [凹凸曼]百度站内搜索和360站内搜索 Safe to Use in 2026?

Generally Safe

Score 100/100

[凹凸曼]百度站内搜索和360站内搜索 has no known CVEs and is actively maintained. It's a solid choice for most WordPress installations.

No known CVEs Updated 11mo ago

Risk Assessment

The static analysis of "apoyl-so" v1.6.0 reveals a generally strong security posture, with no identified vulnerabilities in its attack surface or taint analysis. The absence of AJAX handlers, REST API routes, shortcodes, and cron events significantly limits potential entry points. The code demonstrates good practices by exclusively using prepared statements for SQL queries and incorporating a nonce check. However, a concerning aspect is the lack of capability checks, meaning that even if functionality were exposed, it might not be properly authorized. Furthermore, the presence of 18% of output that is not properly escaped could lead to cross-site scripting (XSS) vulnerabilities if any of these outputs contain user-supplied data.

The plugin has no recorded vulnerability history, which is a positive indicator. This, combined with the lack of critical or high-severity findings in the static analysis, suggests a well-developed and secure plugin. Nevertheless, the incomplete output escaping remains a potential risk that should be addressed to further harden the plugin's security. The absence of exposed functionality, while reducing immediate risk, also means the security benefits of capability checks are not being utilized.

Key Concerns

Unescaped output detected
Missing capability checks

Vulnerabilities

None known

[凹凸曼]百度站内搜索和360站内搜索 Security Vulnerabilities

No known vulnerabilities — this is a good sign.

Code Analysis

Analyzed Mar 17, 2026

[凹凸曼]百度站内搜索和360站内搜索 Code Analysis

Dangerous Functions

Raw SQL Queries

0 prepared

Unescaped Output

9 escaped

Nonce Checks

Capability Checks

File Operations

External Requests

Bundled Libraries

Output Escaping

82% escaped11 total outputs

Data Flows

All sanitized

Data Flow Analysis

1 flows

<admin-display> (admin\partials\admin-display.php:0)

Source (user input) Sink (dangerous op) Sanitizer Transform Unsanitized Sanitized

Attack Surface

[凹凸曼]百度站内搜索和360站内搜索 Attack Surface

Entry Points0

Unprotected0

WordPress Hooks 4

actionplugins_loadedincludes\so.php:46

actionadmin_menuincludes\so.php:51

actionwp_enqueue_scriptsincludes\so.php:58

actionthe_contentincludes\so.php:59

Maintenance & Trust

[凹凸曼]百度站内搜索和360站内搜索 Maintenance & Trust

Maintenance Signals

WordPress version tested6.8.5

Last updatedApr 24, 2025

PHP min version7.4

Downloads1K

Community Trust

Rating0/100

Number of ratings0

Active installs10

Alternatives

[凹凸曼]百度站内搜索和360站内搜索 Alternatives

WP VR – 360 Panorama and Free Virtual Tour Builder For WordPress

wpvr

Create stunning 360 virtual tours to impress visitors and get more clients using WPVR - the easiest virtual tour creator in WordPress.

10K 14 CVEs

Site Kit by Google – Analytics, Search Console, AdSense, Speed

google-site-kit

100

Site Kit is a one-stop solution for WordPress users to use everything Google has to offer to make them successful on the web.

5.0M 1 CVE

All in One SEO – Powerful SEO Plugin to Boost SEO Rankings & Increase Traffic

all-in-one-seo-pack

AIOSEO is the most powerful WordPress SEO plugin. Improve SEO rankings and traffic with comprehensive SEO tools and smart AI SEO optimizations!

3.0M 26 CVEs

$Rank Math SEO – AI SEO Tools to Dominate SEO Rankings$

Rank Math SEO – AI SEO Tools to Dominate SEO Rankings

seo-by-rank-math

Rank Math SEO is the best WordPress SEO plugin with the features of many SEO and AI SEO tools in a single package to help multiply your SEO traffic.

3.0M 20 CVEs

Maintenance

maintenance

100

Great looking maintenance, coming soon & under construction pages. Put your site under maintenance in minutes.

1.0M 1 CVE

Developer Profile

[凹凸曼]百度站内搜索和360站内搜索 Developer Profile

apoyl

27 plugins · 710 total installs

trust score

Avg Security Score

100/100

Avg Patch Time

30 days

View full developer profile

Detection Fingerprints

How We Detect [凹凸曼]百度站内搜索和360站内搜索

Patterns used to identify this plugin on WordPress sites during automated security audits and web crawling.

Asset Fingerprints

Asset Paths

/wp-content/plugins/apoyl-so/admin/css/admin.css/wp-content/plugins/apoyl-so/admin/js/admin.js/wp-content/plugins/apoyl-so/public/css/public.css

Script Paths

/wp-content/plugins/apoyl-so/admin/js/admin.js

Version Parameters

apoyl-so/css/admin.css?ver=apoyl-so/js/admin.js?ver=apoyl-so/css/public.css?ver=

HTML / DOM Fingerprints

FAQ