Does Auto Post Expiry Manager have any unpatched vulnerabilities?

No. All known vulnerabilities in Auto Post Expiry Manager have been patched as of the latest data update. Always keep the plugin updated to the latest version.

Is Auto Post Expiry Manager compatible with WordPress 6.8.5?

According to WordPress.org data, Auto Post Expiry Manager 1.0 has been tested up to WordPress 6.8.5. Check the plugin's changelog for the latest compatibility information.

Is Auto Post Expiry Manager compatible with PHP 7.2+?

Auto Post Expiry Manager requires PHP 7.2 or higher. Most modern WordPress hosts run PHP 8.1 or 8.2. If you are on an older PHP version, consider upgrading before installing this plugin.

How often is Auto Post Expiry Manager updated?

Auto Post Expiry Manager was last updated on Jun 23, 2025. Frequent updates are generally a positive security signal.

What is Auto Post Expiry Manager's security score?

Auto Post Expiry Manager has a WP-Safety security score of 100/100. This score is computed from CVE history, patch response time, developer trust signals, and plugin maintenance activity.

Auto Post Expiry Manager Security & Risk Analysis

wordpress.org/plugins/auto-post-expiry-manager

Automatically expire posts and custom post types at a specific date and time. Works with all public post types and uses a lightweight cron scheduler.

80 active installs v1.0 PHP 7.2+ WP 5.0+ Updated Jun 23, 2025

auto-unpublishexpire-postspost-expirationpost-lifecycleschedule-post-draft

A · Safe

CVEs total0

Unpatched0

Last CVENever

Download

Safety Verdict

Is Auto Post Expiry Manager Safe to Use in 2026?

Generally Safe

Score 100/100

Auto Post Expiry Manager has no known CVEs and is actively maintained. It's a solid choice for most WordPress installations.

No known CVEs Updated 9mo ago

Risk Assessment

The static analysis for Auto-Post-Expiry-Manager v1.0 reveals a generally good security posture with several strengths. The absence of dangerous functions, SQL injection vulnerabilities, file operations, and external HTTP requests are positive indicators. The plugin also demonstrates a commitment to security by implementing nonce and capability checks for its entry points, and importantly, all detected SQL queries utilize prepared statements, a crucial defense against SQL injection. However, there's a minor concern regarding output escaping, where 27% of outputs are not properly escaped, potentially opening the door for cross-site scripting (XSS) vulnerabilities if user-controlled data is involved in these unescaped outputs.

The attack surface is minimal, with no AJAX handlers, REST API routes, or shortcodes present, and the single cron event is not explicitly stated as unprotected. The taint analysis showed no identified flows, which is a strong positive. Furthermore, the plugin has no recorded vulnerability history (CVEs), suggesting a stable and likely secure past. Despite the small percentage of unescaped outputs, which warrants attention, the overall security of Auto-Post-Expiry-Manager v1.0 appears to be robust, with a low risk profile based on the provided data.

Key Concerns

Unescaped output detected

Vulnerabilities

None known

Auto Post Expiry Manager Security Vulnerabilities

No known vulnerabilities — this is a good sign.

Code Analysis

Analyzed Mar 16, 2026

Auto Post Expiry Manager Code Analysis

Dangerous Functions

Raw SQL Queries

0 prepared

Unescaped Output

8 escaped

Nonce Checks

Capability Checks

File Operations

External Requests

Bundled Libraries

Output Escaping

73% escaped11 total outputs

Attack Surface

Auto Post Expiry Manager Attack Surface

Entry Points0

Unprotected0

WordPress Hooks 5

actionadd_meta_boxesauto-post-expiry-manager.php:36

actionsave_postauto-post-expiry-manager.php:115

filtercron_schedulesauto-post-expiry-manager.php:196

actionapem_check_expiry_eventauto-post-expiry-manager.php:220

actionadmin_initauto-post-expiry-manager.php:239

Scheduled Events 1

apem_check_expiry_event

Maintenance & Trust

Auto Post Expiry Manager Maintenance & Trust

Maintenance Signals

WordPress version tested6.8.5

Last updatedJun 23, 2025

PHP min version7.2

Downloads457

Community Trust

Rating0/100

Number of ratings0

Active installs80

Alternatives

Auto Post Expiry Manager Alternatives

DishSoap

dishsoap

Automatically unpublish or unsticky a post on a specified date and time. Simple interface for ease of use.

10 No CVEs

Expiring Posts

expiring-posts

This plugin adds functionality to expire a post on a given date.

1K No CVEs

Content Scheduler

content-scheduler

Schedule content to automatically expire and change at a certain time, and notify people of expiration.

200 No CVEs

Page Expiration Robot – Countdown Timer

page-expiration-robot

The official #1 most intelligent, scarcity countdown timer plugin ever created for WordPress to expire posts AND pages on autopilot!

100 No CVEs

Sticky Posts Expire

sticky-posts-expire

A simple plugin that allows you to set an expiration date on posts. Once a post is expired, it will no longer be sticky.

100 No CVEs

Developer Profile

Auto Post Expiry Manager Developer Profile

Hardik Galiya

1 plugin · 80 total installs

trust score

Avg Security Score

100/100

Avg Patch Time

30 days

View full developer profile

Detection Fingerprints

How We Detect Auto Post Expiry Manager

Patterns used to identify this plugin on WordPress sites during automated security audits and web crawling.

Asset Fingerprints

HTML / DOM Fingerprints

Data Attributes

id="apem_expiry_datetime"name="expiry_datetime"id="apem_expiry_status"name="expiry_status"name="expiry_notify"id="apem_expiry_box"+1 more

FAQ