Does Checker have any unpatched vulnerabilities?

No published vulnerabilities and no findings under coordinated disclosure as of the latest data update. Always keep the plugin updated to the latest version.

Is Checker compatible with WordPress 6.4.8?

According to WordPress.org data, Checker 0.1.0 has been tested up to WordPress 6.4.8. Check the plugin's changelog for the latest compatibility information.

Is Checker compatible with PHP 7.4+?

Checker requires PHP 7.4 or higher. Most modern WordPress hosts run PHP 8.1 or 8.2. If you are on an older PHP version, consider upgrading before installing this plugin.

How often is Checker updated?

Checker was last updated on Feb 13, 2024. Frequent updates are generally a positive security signal.

What is Checker's security score?

Checker has a WP-Safety security score of 85/100. This score is computed from CVE history, patch response time, developer trust signals, and plugin maintenance activity.

Checker Security & Risk Analysis

wordpress.org/plugins/checker

A Checklist in WP admin area.

100 active installs v0.1.0 PHP 7.4+ WP 6.0+ Updated Feb 13, 2024

checklistcheckstasks

A · Safe

CVEs total0

Unpatched0

Last CVENever

Download

Safety Verdict

Is Checker Safe to Use in 2026?

Generally Safe

Score 85/100

Checker has no known CVEs and is actively maintained. It's a solid choice for most WordPress installations.

No known CVEs Updated 2yr ago

Risk Assessment

The "checker" plugin v0.1.0 demonstrates a generally strong security posture based on the provided static analysis. The absence of any exposed AJAX handlers, REST API routes, shortcodes, or cron events significantly limits the potential attack surface. Furthermore, the code strictly adheres to best practices by exclusively using prepared statements for SQL queries and properly escaping all output, eliminating common vulnerabilities related to data injection and cross-site scripting. The presence of nonce checks is also a positive sign for input validation.

Despite these strengths, there is one area of concern flagged by the taint analysis: a flow with an unsanitized path. While no critical or high-severity taint flows were identified, this single instance warrants careful investigation to ensure it does not lead to a vulnerability, especially as it involves file operations. The plugin's vulnerability history is clean, with no recorded CVEs, which is a positive indicator of past security diligence. However, this is a very early version (v0.1.0), and a lack of history does not guarantee future security. The overall assessment is positive due to the proactive security measures, but the identified unsanitized path is a specific point of attention that prevents a perfect score.

Key Concerns

Flow with unsanitized path

Vulnerabilities

None known

Checker Security Vulnerabilities

No known vulnerabilities — this is a good sign.

Version History

Checker Release Timeline

v0.1.0Current

Code Analysis

Analyzed Apr 16, 2026

Checker Code Analysis

Dangerous Functions

Raw SQL Queries

0 prepared

Unescaped Output

0 escaped

Nonce Checks

Capability Checks

File Operations

External Requests

Bundled Libraries

Data Flows · Security

1 unsanitized

Data Flow Analysis

2 flows1 with unsanitized paths

import_tasks (inc/custom-routes/tasks.php:724)

Source (user input) Sink (dangerous op) Sanitizer Transform Unsanitized Sanitized

Attack Surface

Checker Attack Surface

Entry Points0

Unprotected0

WordPress Hooks 4

actionadmin_initchecker.php:16

actioninitchecker.php:26

actionadmin_menuchecker.php:57

actionrest_api_initinc/custom-routes/tasks.php:10

Maintenance & Trust

Checker Maintenance & Trust

Maintenance Signals

WordPress version tested6.4.8

Last updatedFeb 13, 2024

PHP min version7.4

Downloads923

Community Trust

Rating0/100

Number of ratings0

Active installs100

Alternatives

Checker Alternatives

Todo Block

todo-block

100

Adds ToDo list block that shows checkboxes on frontend and backend of your site.

300 No CVEs

WP To Do

wp-todo

WP-Todo: Smart To-Do List & Task Management Plugin for WordPress

100 7 CVEs

To Do List Member

todo-lists-for-membership-sites

To Do List Member adds todolists and tasks using custom taxonomy and post type to your blog.

10 No CVEs

OtterFixer Task Board

otterfixer-task-board

100

Task board for the WordPress admin area.

0 No CVEs

PrePublish Checks by Kgaurav

prepublish-checks-by-kgaurav

100

A plugin that checks to ensure variety of conditions are being met before any new post can be published.Eg-Minimum Title length,Featured Image,etc.

0 No CVEs

Developer Profile

Checker Developer Profile

Deepak Khokhar

7 plugins · 5K total installs

trust score

Avg Security Score

97/100

Avg Patch Time

236 days

View full developer profile

Detection Fingerprints

How We Detect Checker

Patterns used to identify this plugin on WordPress sites during automated security audits and web crawling.

Asset Fingerprints

Asset Paths

/wp-content/plugins/checker/lib/font-awesome/css/font-awesome.min.css/wp-content/plugins/checker/build/style-index.css/wp-content/plugins/checker/build/index.js/wp-content/plugins/checker/lib/font-awesome/js/fontawesome.min.js

Script Paths

/wp-content/plugins/checker/build/index.js

Version Parameters

checker/build/index.js?ver=

HTML / DOM Fingerprints

CSS Classes

chkr-checklist-managerchkr-popup-wrapper

JS Globals

wpApiSettings

REST Endpoints

/wp-json/checker/v1/chkr_task/getAll//wp-json/checker/v1/chkr_task/get//wp-json/checker/v1/chkr_task/insert//wp-json/checker/v1/chkr_task/update//wp-json/checker/v1/chkr_task/delete/(?P<id>\d+)

FAQ