Does AutoRadomContent have any unpatched vulnerabilities?

No. All known vulnerabilities in AutoRadomContent have been patched as of the latest data update. Always keep the plugin updated to the latest version.

Is AutoRadomContent compatible with WordPress 4.9.29?

According to WordPress.org data, AutoRadomContent 2.1.2 has been tested up to WordPress 4.9.29. Check the plugin's changelog for the latest compatibility information.

Is AutoRadomContent compatible with PHP 7.0.1+?

AutoRadomContent requires PHP 7.0.1 or higher. Most modern WordPress hosts run PHP 8.1 or 8.2. If you are on an older PHP version, consider upgrading before installing this plugin.

How often is AutoRadomContent updated?

AutoRadomContent was last updated on Jun 19, 2018. Frequent updates are generally a positive security signal.

What is AutoRadomContent's security score?

AutoRadomContent has a WP-Safety security score of 85/100. This score is computed from CVE history, patch response time, developer trust signals, and plugin maintenance activity.

AutoRadomContent Security & Risk Analysis

wordpress.org/plugins/auto-random-content

This plugin generate automatic post/page/comments/Users/media/terms with random content | It's Perfect for WP developer.

70 active installs v2.1.2 PHP 7.0.1+ WP 3.7+ Updated Jun 19, 2018

admindummy-contentdummy-datageneratorlorem-ipsun

A · Safe

CVEs total0

Unpatched0

Last CVENever

Plugin page Download

Safety Verdict

Is AutoRadomContent Safe to Use in 2026?

Generally Safe

Score 85/100

AutoRadomContent has no known CVEs and is actively maintained. It's a solid choice for most WordPress installations.

No known CVEs Updated 7yr ago

Risk Assessment

The 'auto-random-content' plugin v2.1.2 exhibits a concerning security posture due to a significant number of unprotected entry points. All four identified AJAX handlers lack authentication checks, creating a broad attack surface that could allow unauthenticated users to trigger potentially sensitive operations. While the static analysis did not reveal critical or high-severity taint flows, the presence of two flows with unsanitized paths warrants attention, as these could be exploited in conjunction with other weaknesses. The absence of any known vulnerabilities in its history is a positive sign, suggesting a developer who may be diligent in addressing security issues or that the plugin hasn't been a target. However, this lack of history doesn't negate the current risks posed by the unprotected AJAX endpoints and the unsanitized paths. The plugin also uses raw SQL queries without prepared statements, which can be susceptible to SQL injection if user input is not meticulously sanitized elsewhere. Overall, while the plugin has no known CVEs, the direct lack of security controls on its AJAX endpoints and the presence of unsanitized paths represent significant vulnerabilities that need immediate attention to improve its security.

Key Concerns

Unprotected AJAX handlers
SQL queries without prepared statements
Flows with unsanitized paths
Missing nonce checks
Missing capability checks

Vulnerabilities

None known

AutoRadomContent Security Vulnerabilities

No known vulnerabilities — this is a good sign.

Code Analysis

Analyzed Mar 16, 2026

AutoRadomContent Code Analysis

Dangerous Functions

Raw SQL Queries

0 prepared

Unescaped Output

18 escaped

Nonce Checks

Capability Checks

File Operations

External Requests

Bundled Libraries

SQL Query Safety

0% prepared4 total queries

Output Escaping

55% escaped33 total outputs

Data Flows

2 unsanitized

Data Flow Analysis

2 flows2 with unsanitized paths

get_post_support (inc\Class\arc_ManageAjaxRequest.php:52)

Source (user input) Sink (dangerous op) Sanitizer Transform Unsanitized Sanitized

Attack Surface

4 unprotected

AutoRadomContent Attack Surface

Entry Points4

Unprotected4

AJAX Handlers 4

authwp_ajax_boot_deleteinc\Class\arc_AutoRandomContent.php:43

authwp_ajax_boot_createinc\Class\arc_AutoRandomContent.php:44

authwp_ajax_get_taxsinc\Class\arc_ManageAjaxRequest.php:25

authwp_ajax_get_post_supportinc\Class\arc_ManageAjaxRequest.php:26

WordPress Hooks 7

actionwp_dashboard_setupinc\Class\arc_DashBoardWidget.php:12

actionadmin_bar_menuinc\Class\arc_ManageAdminbarButton.php:12

actionadmin_enqueue_scriptsinc\Class\arc_ManageAssets.php:12

actionin_admin_footerinc\Class\arc_ManageAssets.php:13

actionplugins_loadedinc\Class\arc_ManageTranslation.php:14

actionadmin_menuinc\Class\arc_RandomContentOptionPage.php:34

actionadmin_initinc\Class\arc_RandomContentOptionPage.php:35

Maintenance & Trust

AutoRadomContent Maintenance & Trust

Maintenance Signals

WordPress version tested4.9.29

Last updatedJun 19, 2018

PHP min version7.0.1

Downloads2K

Community Trust

Rating100/100

Number of ratings1

Active installs70

Alternatives

AutoRadomContent Alternatives

FakerPress

fakerpress

100

FakerPress is a clean way to generate fake and dummy content to your WordPress, great for developers who need testing

10K No CVEs

Dummy Text Generator

dummy-text-generator

This is a simple WordPress Dummy Text Generator plugin. This plugin based on lorem ipsum dummy content.

100 No CVEs

WP Dummy Content Generator

wp-dummy-content-generator

Generate realistic dummy content for WordPress quickly. Ideal for developers and designers to populate sites for testing and development.

7K 5 CVEs

Easy Populate Posts

easy-populate-posts

100

Populate the sites with random content: title, type, terms, meta, images, status, date, parent, sticky, Gutenberg template, etc.

200 No CVEs

Lorem Ipsum by Webline

lorem-ipsum-by-webline

A Simple plugin to generate lorem ipsum dummy text using shortcode.

100 No CVEs

Developer Profile

AutoRadomContent Developer Profile

marcobaro1991

1 plugin · 70 total installs

trust score

Avg Security Score

85/100

Avg Patch Time

30 days

View full developer profile

Detection Fingerprints

How We Detect AutoRadomContent

Patterns used to identify this plugin on WordPress sites during automated security audits and web crawling.

Asset Fingerprints

Asset Paths

/wp-content/plugins/auto-random-content/assets/random_content.css/wp-content/plugins/auto-random-content/assets/random_content.js

Script Paths

/wp-content/plugins/auto-random-content/assets/random_content.js

Version Parameters

random_content_css?ver=1.6.1random_content_js?ver=2.1.0

HTML / DOM Fingerprints

CSS Classes

item-1item-2item-3item-4

Data Attributes

id="container_loader"id="loading_container"id="loader"id="on_waiting_create"id="on_waiting_delete"id="create_success"+3 more

JS Globals

random_content_ajax_object

FAQ