Does Categorized Tag Cloud have any unpatched vulnerabilities?

No. All known vulnerabilities in Categorized Tag Cloud have been patched as of the latest data update. Always keep the plugin updated to the latest version.

Is Categorized Tag Cloud compatible with WordPress 6.5.8?

According to WordPress.org data, Categorized Tag Cloud 1.2.25 has been tested up to WordPress 6.5.8. Check the plugin's changelog for the latest compatibility information.

How often is Categorized Tag Cloud updated?

Categorized Tag Cloud was last updated on Mar 22, 2024. Frequent updates are generally a positive security signal.

What is Categorized Tag Cloud's security score?

Categorized Tag Cloud has a WP-Safety security score of 85/100. This score is computed from CVE history, patch response time, developer trust signals, and plugin maintenance activity.

Categorized Tag Cloud Security & Risk Analysis

wordpress.org/plugins/categorized-tag-cloud

A cloud with the most used tags in a sidebar widget, filtered by post category.

1K active installs v1.2.25 PHP + WP 2.9+ Updated Mar 22, 2024

categoriessidebartag-sidebartagswidget

A · Safe

CVEs total0

Unpatched0

Last CVENever

Plugin page Download

Safety Verdict

Is Categorized Tag Cloud Safe to Use in 2026?

Generally Safe

Score 85/100

Categorized Tag Cloud has no known CVEs and is actively maintained. It's a solid choice for most WordPress installations.

No known CVEs Updated 2yr ago

Risk Assessment

The "categorized-tag-cloud" v1.2.25 plugin exhibits a strong security posture based on the provided static analysis. The complete absence of entry points such as AJAX handlers, REST API routes, shortcodes, and cron events significantly minimizes the attack surface. Furthermore, the code signals indicate a diligent approach to security, with no dangerous functions, all SQL queries using prepared statements, and no file operations or external HTTP requests. The lack of known CVEs and historical vulnerabilities further reinforces this positive assessment.

However, a notable concern arises from the output escaping analysis, where only 16% of the 19 total outputs are properly escaped. This represents a potential risk for cross-site scripting (XSS) vulnerabilities if user-supplied data is not adequately sanitized before being displayed. While the taint analysis shows no reported unsanitized flows, the low percentage of properly escaped output suggests that manual code review or further analysis might be warranted to identify and mitigate potential XSS vectors.

In conclusion, the plugin demonstrates excellent foundational security practices by limiting its attack surface and avoiding risky coding patterns. The primary area for improvement and potential risk lies in ensuring comprehensive output escaping to protect against XSS. Given the current data, the plugin appears relatively secure, but the output escaping issue warrants attention.

Key Concerns

Low percentage of properly escaped output

Vulnerabilities

None known

Categorized Tag Cloud Security Vulnerabilities

No known vulnerabilities — this is a good sign.

Code Analysis

Analyzed Mar 16, 2026

Categorized Tag Cloud Code Analysis

Dangerous Functions

Raw SQL Queries

0 prepared

Unescaped Output

3 escaped

Nonce Checks

Capability Checks

File Operations

External Requests

Bundled Libraries

Output Escaping

16% escaped19 total outputs

Attack Surface

Categorized Tag Cloud Attack Surface

Entry Points0

Unprotected0

WordPress Hooks 1

actionwidgets_initcategorized-tag-cloud.php:258

Maintenance & Trust

Categorized Tag Cloud Maintenance & Trust

Maintenance Signals

WordPress version tested6.5.8

Last updatedMar 22, 2024

PHP min version

Downloads59K

Community Trust

Rating76/100

Number of ratings10

Active installs1K

Alternatives

Categorized Tag Cloud Alternatives

Tilted Tag Cloud Widget

tilted-tag-cloud-widget

Shows a tilted cloud with the most used tags in a sidebar widget.

100 No CVEs

SensitiveTagCloud

sensitive-tag-cloud

This wordpress plugin provides a tagcloud that shows tags depending of the current context (e.g. Category, Author, Tag, Post) only.

50 1 unpatched

Widget Logic

widget-logic

Widget Logic lets you control on which pages widgets appear using WP's conditional tags.

100K 2 CVEs

Essential Widgets

essential-widgets

Essential Widgets is a WordPress plugin for widgets that allows you to create and add amazing widgets with high customization option

10K 2 CVEs

Flexible Posts Widget

flexible-posts-widget

An advanced posts display widget with many options. Display posts in your sidebars any way you'd like!

8K No CVEs

Developer Profile

Categorized Tag Cloud Developer Profile

whiletrue

7 plugins · 3K total installs

trust score

Avg Security Score

87/100

Avg Patch Time

13 days

View full developer profile

Detection Fingerprints

How We Detect Categorized Tag Cloud

Patterns used to identify this plugin on WordPress sites during automated security audits and web crawling.

Asset Fingerprints

Asset Paths

/wp-content/plugins/categorized-tag-cloud/categorized-tag-cloud.php

Version Parameters

categorized-tag-cloud.php?ver=categorized-tag-cloud/categorized-tag-cloud.php?ver=

HTML / DOM Fingerprints

CSS Classes

categorized-tag-cloud

HTML Comments

constructor CATEGORY FILTERS

Data Attributes

name="categorized-tag-cloud-num-filters"name="categorized-tag-cloud-cat-name="categorized-tag-cloud-tag-

Shortcode Output

<div id="categorized-tag-cloud"><span id="categorized-tag-cloud-el-

<style>
  
  #categorized-tag-cloud a, #categorized-tag-cloud a:visited { text-decoration:none; }
      #categorized-tag-cloud a:hover { text-decoration:none; color:

#categorized-tag-cloud-el-

FAQ