Aucor URL Sanitizer Security & Risk Analysis

wordpress.org/plugins/aucor-url-sanitizer

Converts Cyrillic, Georgian, Arabic and Chinese characters in post, term slugs and media file names to Latin characters.

60 active installs v2.1 PHP 7.0+ WP 4.7.3+ Updated Aug 8, 2019
i18nsanitizeslug
85
A · Safe
CVEs total0
Unpatched0
Last CVENever
Safety Verdict

Is Aucor URL Sanitizer Safe to Use in 2026?

Generally Safe

Score 85/100

Aucor URL Sanitizer has no known CVEs and is actively maintained. It's a solid choice for most WordPress installations.

No known CVEs Updated 6yr ago
Risk Assessment

The aucor-url-sanitizer v2.1 plugin exhibits an excellent security posture based on the provided static analysis. The absence of any identified AJAX handlers, REST API routes, shortcodes, or cron events significantly limits the plugin's attack surface. Furthermore, the code analysis reveals a complete lack of dangerous functions, file operations, and external HTTP requests, which are common vectors for exploitation. The plugin also demonstrates robust security practices by exclusively using prepared statements for all SQL queries and ensuring all outputs are properly escaped, effectively mitigating risks of SQL injection and cross-site scripting.

Taint analysis shows no identified flows, indicating that data handling within the plugin appears secure against common injection vulnerabilities. The vulnerability history is equally impressive, with no recorded CVEs, suggesting a mature and well-maintained codebase. The lack of nonces and capability checks is notable, but given the minimal attack surface and absence of exploitable code signals, this is not a pressing concern in this specific context. However, as the plugin evolves, incorporating these checks for any future expansion of its functionality would be a proactive security measure.

In conclusion, aucor-url-sanitizer v2.1 is a highly secure plugin. Its strengths lie in its minimal attack surface and diligent implementation of secure coding practices. While the absence of nonce and capability checks could be a concern in a more complex plugin, the current evidence points to a negligible risk profile. The plugin's clean vulnerability history further reinforces its strong security standing.

Vulnerabilities
None known

Aucor URL Sanitizer Security Vulnerabilities

No known vulnerabilities — this is a good sign.
Version History

Aucor URL Sanitizer Release Timeline

No version history available.
Code Analysis
Analyzed Mar 16, 2026

Aucor URL Sanitizer Code Analysis

Dangerous Functions
0
Raw SQL Queries
0
0 prepared
Unescaped Output
0
0 escaped
Nonce Checks
0
Capability Checks
0
File Operations
0
External Requests
0
Bundled Libraries
0
Attack Surface

Aucor URL Sanitizer Attack Surface

Entry Points0
Unprotected0
WordPress Hooks 2
filtersanitize_titleaucor-url-sanitizer.php:621
filtersanitize_file_nameaucor-url-sanitizer.php:622
Maintenance & Trust

Aucor URL Sanitizer Maintenance & Trust

Maintenance Signals

WordPress version tested5.2.24
Last updatedAug 8, 2019
PHP min version7.0
Downloads5K

Community Trust

Rating0/100
Number of ratings0
Active installs60
Developer Profile

Aucor URL Sanitizer Developer Profile

Generaxion

6 plugins · 560 total installs

84
trust score
Avg Security Score
85/100
Avg Patch Time
30 days
View full developer profile
Detection Fingerprints

How We Detect Aucor URL Sanitizer

Patterns used to identify this plugin on WordPress sites during automated security audits and web crawling.

Asset Fingerprints

Asset Paths
/wp-content/plugins/aucor-url-sanitizer/css/aucor-url-sanitizer.css
Version Parameters
aucor-url-sanitizer/css/aucor-url-sanitizer.css?ver=

HTML / DOM Fingerprints

FAQ

Frequently Asked Questions about Aucor URL Sanitizer