Does atec Duplicate Page & Post have any unpatched vulnerabilities?

No. All known vulnerabilities in atec Duplicate Page & Post have been patched as of the latest data update. Always keep the plugin updated to the latest version.

Is atec Duplicate Page & Post compatible with WordPress 6.9.4?

According to WordPress.org data, atec Duplicate Page & Post 1.2.25 has been tested up to WordPress 6.9.4. Check the plugin's changelog for the latest compatibility information.

Is atec Duplicate Page & Post compatible with PHP 7.4+?

atec Duplicate Page & Post requires PHP 7.4 or higher. Most modern WordPress hosts run PHP 8.1 or 8.2. If you are on an older PHP version, consider upgrading before installing this plugin.

How often is atec Duplicate Page & Post updated?

atec Duplicate Page & Post was last updated on Unknown. Frequent updates are generally a positive security signal.

What is atec Duplicate Page & Post's security score?

atec Duplicate Page & Post has a WP-Safety security score of 99/100. This score is computed from CVE history, patch response time, developer trust signals, and plugin maintenance activity.

atec Duplicate Page & Post Security & Risk Analysis

wordpress.org/plugins/atec-duplicate-page-post

Duplicate page or post with one click.

20 active installs v1.2.25 PHP 7.4+ WP 4.9+ Updated Unknown

duplicate-page-or-post-with-one-click

A · Safe

CVEs total1

Unpatched0

Last CVENov 24, 2025

Plugin page Download

Safety Verdict

Is atec Duplicate Page & Post Safe to Use in 2026?

Generally Safe

Score 99/100

atec Duplicate Page & Post has a strong security track record. Known vulnerabilities have been patched promptly.

1 known CVELast CVE: Nov 24, 2025

Risk Assessment

The "atec-duplicate-page-post" plugin v1.2.25 exhibits a mixed security posture. On the positive side, the plugin demonstrates good practices by utilizing prepared statements for all SQL queries and properly escaping almost all output. It also incorporates nonce and capability checks, which are crucial for securing WordPress functionalities. The absence of taint analysis findings and dangerous function calls further suggests a generally well-written codebase.

However, a significant concern arises from the presence of one AJAX handler that lacks authentication checks. This represents a direct entry point that could be exploited by unauthenticated users if it performs any sensitive operations. The plugin also has a history of past vulnerabilities, with one medium severity CVE recorded. While currently unpatched vulnerabilities are zero, the recurrence of missing authorization as a common vulnerability type in its history is a red flag, suggesting potential recurring oversight in securing entry points.

In conclusion, while the plugin benefits from strong coding practices in areas like SQL and output handling, the unprotected AJAX endpoint and historical vulnerability patterns necessitate careful consideration. The focus should be on securing this exposed entry point and ensuring that future updates address any potential authorization flaws to mitigate risks.

Key Concerns

AJAX handler without authentication check
Past medium severity CVE

Vulnerabilities

atec Duplicate Page & Post Security Vulnerabilities

CVEs by Year

1 CVE in 2025

2025

Patched Has unpatched

Severity Breakdown

Medium

1 total CVE

CVE-2025-13404medium · 5.3Missing Authorization

atec Duplicate Page & Post <= 1.2.20 - Missing Authorization to Authenticated (Contributor+) Arbitrary Post Duplication and Data Exposure

Nov 24, 2025 Patched in 1.2.21 (1d)

Code Analysis

Analyzed Mar 16, 2026

atec Duplicate Page & Post Code Analysis

Dangerous Functions

Raw SQL Queries

0 prepared

Unescaped Output

247 escaped

Nonce Checks

Capability Checks

File Operations

External Requests

Bundled Libraries

Output Escaping

99% escaped249 total outputs

Attack Surface

1 unprotected

atec Duplicate Page & Post Attack Surface

Entry Points1

Unprotected1

AJAX Handlers 1

authwp_ajax_atec_admin_notice_dismissincludes\ATEC\LOADER.php:109

WordPress Hooks 10

actionadmin_menuatec-duplicate-page-post.php:29

actionadmin_initatec-duplicate-page-post.php:31

actionadmin_enqueue_scriptsincludes\ATEC\INIT.php:564

actionadmin_noticesincludes\ATEC\INIT.php:647

actionadmin_footerincludes\ATEC\INIT.php:688

actionadmin_noticesincludes\ATEC\INIT.php:720

filterpost_row_actionsincludes\atec-wpdpp-hooks.php:10

filterpage_row_actionsincludes\atec-wpdpp-hooks.php:11

actionadmin_action_atec_wpdpp_duplicate_postincludes\atec-wpdpp-hooks.php:12

actionadmin_noticesincludes\atec-wpdpp-hooks.php:13

Maintenance & Trust

atec Duplicate Page & Post Maintenance & Trust

Maintenance Signals

WordPress version tested6.9.4

Last updatedUnknown

PHP min version7.4

Downloads276

Community Trust

Rating100/100

Number of ratings1

Active installs20

Alternatives

atec Duplicate Page & Post Alternatives

No alternatives data available yet.

Developer Profile

atec Duplicate Page & Post Developer Profile

docjojo

16 plugins · 3K total installs

trust score

Avg Security Score

99/100

Avg Patch Time

1 days

View full developer profile

Detection Fingerprints

How We Detect atec Duplicate Page & Post

Patterns used to identify this plugin on WordPress sites during automated security audits and web crawling.

Asset Fingerprints

Asset Paths

/wp-content/plugins/atec-duplicate-page-post/includes/ATEC/assets/css/atec-wpdpp-admin.css/wp-content/plugins/atec-duplicate-page-post/includes/ATEC/assets/js/atec-wpdpp-admin.js

Script Paths

/wp-content/plugins/atec-duplicate-page-post/includes/ATEC/assets/js/atec-wpdpp-admin.js

Version Parameters

atec-wpdpp-admin.js?ver=atec-wpdpp-admin.css?ver=

HTML / DOM Fingerprints

CSS Classes

atec-wpdpp-admin-rowatec-wpdpp-clone-button

Data Attributes

data-atec-wpdpp-id

JS Globals

atec_wpdpp_ajax_cb

FAQ