Does Categories Metabox Enhanced have any unpatched vulnerabilities?

No. All known vulnerabilities in Categories Metabox Enhanced have been patched as of the latest data update. Always keep the plugin updated to the latest version.

Is Categories Metabox Enhanced compatible with WordPress 5.6.17?

According to WordPress.org data, Categories Metabox Enhanced 0.7.1 has been tested up to WordPress 5.6.17. Check the plugin's changelog for the latest compatibility information.

How often is Categories Metabox Enhanced updated?

Categories Metabox Enhanced was last updated on Feb 12, 2021. Frequent updates are generally a positive security signal.

What is Categories Metabox Enhanced's security score?

Categories Metabox Enhanced has a WP-Safety security score of 85/100. This score is computed from CVE history, patch response time, developer trust signals, and plugin maintenance activity.

Categories Metabox Enhanced Security & Risk Analysis

wordpress.org/plugins/categories-metabox-enhanced

Replace the checkboxes with radio buttons or a select drop-down in the built-in Categories metabox and Gutenberg sidebar panel.

1K active installs v0.7.1 PHP + WP 3.5+ Updated Feb 12, 2021

categorymetaboxtaxonomy

A · Safe

CVEs total0

Unpatched0

Last CVENever

Plugin page Download

Safety Verdict

Is Categories Metabox Enhanced Safe to Use in 2026?

Generally Safe

Score 85/100

Categories Metabox Enhanced has no known CVEs and is actively maintained. It's a solid choice for most WordPress installations.

No known CVEs Updated 5yr ago

Risk Assessment

The "categories-metabox-enhanced" plugin version 0.7.1 presents a generally good security posture based on the provided static analysis and vulnerability history. The lack of critical or high-severity vulnerabilities in its history, coupled with the absence of dangerous functions, raw SQL queries, file operations, and external HTTP requests in the code, are strong indicators of secure development practices. The presence of nonce checks further enhances its security. However, a significant concern arises from the output escaping. With 39% of outputs properly escaped, this leaves 61% potentially unescaped. This could lead to cross-site scripting (XSS) vulnerabilities if user-supplied data is directly outputted without proper sanitization, especially given the single AJAX entry point which, while having a nonce check, still needs careful consideration regarding output handling.

Key Concerns

Insufficient output escaping (61% unescaped)

Vulnerabilities

None known

Categories Metabox Enhanced Security Vulnerabilities

No known vulnerabilities — this is a good sign.

Code Analysis

Analyzed Mar 16, 2026

Categories Metabox Enhanced Code Analysis

Dangerous Functions

Raw SQL Queries

0 prepared

Unescaped Output

19 escaped

Nonce Checks

Capability Checks

File Operations

External Requests

Bundled Libraries

Output Escaping

39% escaped49 total outputs

Attack Surface

Categories Metabox Enhanced Attack Surface

Entry Points1

Unprotected0

AJAX Handlers 1

authwp_ajax_taxonomy_single_term_addincludes\taxonomy-single-term\class.taxonomy-single-term.php:146

WordPress Hooks 9

actionadmin_initincludes\class-category-metabox-enhanced-settings.php:28

actionplugins_loadedincludes\class-category-metabox-enhanced.php:149

actionadmin_noticesincludes\class-category-metabox-enhanced.php:165

actionadmin_menuincludes\class-category-metabox-enhanced.php:168

actionadmin_initincludes\class-category-metabox-enhanced.php:175

actionadmin_enqueue_scriptsincludes\class-category-metabox-enhanced.php:177

actionadd_meta_boxesincludes\taxonomy-single-term\class.taxonomy-single-term.php:144

actionadmin_footerincludes\taxonomy-single-term\class.taxonomy-single-term.php:145

actionset_object_termsincludes\taxonomy-single-term\class.taxonomy-single-term.php:536

Maintenance & Trust

Categories Metabox Enhanced Maintenance & Trust

Maintenance Signals

WordPress version tested5.6.17

Last updatedFeb 12, 2021

PHP min version

Downloads18K

Community Trust

Rating98/100

Number of ratings16

Active installs1K

Alternatives

Categories Metabox Enhanced Alternatives

Category Order and Taxonomy Terms Order

taxonomy-terms-order

Drag-and-drop ordering for Categories & any taxonomy (hierarchically) using a Drag and Drop Sortable JavaScript capability.

500K 2 CVEs

Categories Images

categories-images

100

The Categories Images is a Wordpress plugin allow you to add image to category, tag or custom taxonomy.

50K No CVEs

Custom Taxonomy Order

custom-taxonomy-order-ne

100

Allows for the ordering of categories and custom taxonomy terms through a simple drag-and-drop interface

50K No CVEs

Search & Filter

search-filter

Search and Filtering for Custom Posts, Categories, Tags, Taxonomies, Post Dates and Post Types

50K 2 CVEs

Tag, Category, and Taxonomy Manager – AI Autotagger with OpenAI

simple-tags

Tags, Categories and WordPress terms are easy with TaxoPress. Add a Tag or Category to Pages, manage your WooCommerce Categories and Tags and more.

50K 13 CVEs

Developer Profile

Categories Metabox Enhanced Developer Profile

Yoren Chang

6 plugins · 4K total installs

trust score

Avg Security Score

87/100

Avg Patch Time

51 days

View full developer profile

Detection Fingerprints

How We Detect Categories Metabox Enhanced

Patterns used to identify this plugin on WordPress sites during automated security audits and web crawling.

Asset Fingerprints

Asset Paths

/wp-content/plugins/categories-metabox-enhanced/admin/js/admin.js/wp-content/plugins/categories-metabox-enhanced/admin/css/admin.css

Script Paths

admin/js/admin.jsadmin/css/admin.css

Version Parameters

categories-metabox-enhanced/admin/js/admin.js?ver=categories-metabox-enhanced/admin/css/admin.css?ver=

HTML / DOM Fingerprints

CSS Classes

of-cme-taxonomy-single-term-wrap

Data Attributes

data-select-ui

JS Globals

of_cme

FAQ