WP-Safety

Bat Importer for Blogger – Unlimited & Free Blogger Importer Security & Risk Analysis

wordpress.org/plugins/bat-importer-for-blogger

Import public Blogger blogs into WordPress by Blog ID, with optional image download, page import, and redirect support.

0 active installs v1.0.1 PHP 7.4+ WP 6.2+ Updated Apr 3, 2026
bloggerimportimportermigrationredirects
100
A · Safe
CVEs total0
Unpatched0
Last CVENever
Download
Safety Verdict

Is Bat Importer for Blogger – Unlimited & Free Blogger Importer Safe to Use in 2026?

Generally Safe

Score 100/100

Bat Importer for Blogger – Unlimited & Free Blogger Importer has no known CVEs and is actively maintained. It's a solid choice for most WordPress installations.

No known CVEs Updated 1mo ago
Risk Assessment

The bat-importer-for-blogger plugin v1.0.1 exhibits a concerning security posture primarily due to its unprotected AJAX endpoints. While the plugin demonstrates good practices in other areas, such as 100% usage of prepared statements for SQL queries and proper output escaping, the presence of five AJAX handlers without any authentication or capability checks represents a significant attack surface. This means any unauthenticated user could potentially trigger these handlers, leading to unintended actions. The taint analysis revealing one flow with unsanitized paths, flagged as high severity, further exacerbates this concern, suggesting a potential for exploitation if this flow is reachable through the unprotected AJAX endpoints. The lack of any documented historical vulnerabilities might suggest either a well-maintained codebase or a lack of past scrutiny. However, the current static analysis points to critical weaknesses that, if exploited, could have severe consequences.

Key Concerns

  • 5 unprotected AJAX handlers
  • 1 high severity taint flow with unsanitized path
  • 1 nonce check, but on only 1 entry point
  • 1 capability check, but on only 1 entry point
Vulnerabilities
None known

Bat Importer for Blogger – Unlimited & Free Blogger Importer Security Vulnerabilities

No known vulnerabilities — this is a good sign.
Version History

Bat Importer for Blogger – Unlimited & Free Blogger Importer Release Timeline

v1.0.1Current
v1.0.0
Code Analysis
Analyzed Apr 16, 2026

Bat Importer for Blogger – Unlimited & Free Blogger Importer Code Analysis

Dangerous Functions
0
Raw SQL Queries
0
12 prepared
Unescaped Output
0
202 escaped
Nonce Checks
1
Capability Checks
1
File Operations
0
External Requests
1
Bundled Libraries
0

SQL Query Safety

100% prepared12 total queries

Output Escaping

100% escaped202 total outputs
Data Flows · Security
1 unsanitized

Data Flow Analysis

1 flows1 with unsanitized paths
<class-mhbi-utils> (includes/class-mhbi-utils.php:0)
Source (user input) Sink (dangerous op) Sanitizer Transform Unsanitized Sanitized
Attack Surface
5 unprotected

Bat Importer for Blogger – Unlimited & Free Blogger Importer Attack Surface

Entry Points5
Unprotected5

AJAX Handlers 5

authwp_ajax_mhbi_start_importbat-importer-for-blogger.php:65
authwp_ajax_mhbi_process_batchbat-importer-for-blogger.php:66
authwp_ajax_mhbi_reset_importbat-importer-for-blogger.php:67
authwp_ajax_mhbi_stop_importbat-importer-for-blogger.php:68
authwp_ajax_mhbi_full_resetbat-importer-for-blogger.php:69
WordPress Hooks 4
actionbefore_delete_postbat-importer-for-blogger.php:71
actionadmin_menuincludes/class-mhbi-admin.php:17
actionadmin_enqueue_scriptsincludes/class-mhbi-admin.php:18
actiontemplate_redirectincludes/class-mhbi-redirector.php:8
Maintenance & Trust

Bat Importer for Blogger – Unlimited & Free Blogger Importer Maintenance & Trust

Maintenance Signals

WordPress version tested6.9.4
Last updatedApr 3, 2026
PHP min version7.4
Downloads162

Community Trust

Rating100/100
Number of ratings1
Active installs0
Alternatives

Bat Importer for Blogger – Unlimited & Free Blogger Importer Alternatives

Blogger Importer

Blogger Importer

blogger-importer

A
92

Imports posts, images, comments, and categories (blogger tags) from a Blogger blog then migrates authors to WordPress users.

60K 1 CVE
Blogger Importer Extended

Blogger Importer Extended

blogger-importer-extended

A
100

Easily move your blog from Blogger to WordPress. Import all your content and setup 301 redirects automatically.

4K No CVEs
FG Drupal to WordPress

FG Drupal to WordPress

fg-drupal-to-wp

A
97

A plugin to migrate articles, stories, pages, categories, tags, images from Drupal to WordPress

800 3 CVEs
BtW Importer – Free Blogger/Blogspot Migration

BtW Importer – Free Blogger/Blogspot Migration

btw-importer

A
100

Import your Blogger .atom file from Google Takeout and migrate to WordPress, free and automatic.

300 No CVEs
Import Wizard for Blogspot – Free Blogger to WordPress importer

Import Wizard for Blogspot – Free Blogger to WordPress importer

import-wizard-blogspot

A
100

Import posts and pages from Blogspot to WordPress with a preview-first workflow, live progress, retries for failed items, and SEO-friendly redirects.

100 No CVEs
Developer Profile

Bat Importer for Blogger – Unlimited & Free Blogger Importer Developer Profile

Mahmoud Hamed

1 plugin · 0 total installs

94
trust score
Avg Security Score
100/100
Avg Patch Time
30 days
View full developer profile
Detection Fingerprints

How We Detect Bat Importer for Blogger – Unlimited & Free Blogger Importer

Patterns used to identify this plugin on WordPress sites during automated security audits and web crawling.

Asset Fingerprints

Asset Paths
/wp-content/plugins/bat-importer-for-blogger/assets/admin.css/wp-content/plugins/bat-importer-for-blogger/assets/admin.js
Script Paths
/wp-content/plugins/bat-importer-for-blogger/assets/admin.js
Version Parameters
bat-importer-for-blogger/assets/admin.css?ver=bat-importer-for-blogger/assets/admin.js?ver=

HTML / DOM Fingerprints

JS Globals
mhbiAdmin
FAQ

Frequently Asked Questions about Bat Importer for Blogger – Unlimited & Free Blogger Importer