WP-Safety

Clarity SEO Security & Risk Analysis

wordpress.org/plugins/clarity-seo

Lightweight, fast SEO plugin for WordPress — meta tags, Schema.org markup, XML sitemap, 301 redirects, 404 monitor, image SEO, breadcrumbs, and more.

40 active installs v2.6.0 PHP 7.4+ WP 5.8+ Updated Mar 10, 2026
meta-tagsredirectsschemaseositemap
100
A · Safe
CVEs total0
Unpatched0
Last CVENever
Download
Safety Verdict

Is Clarity SEO Safe to Use in 2026?

Generally Safe

Score 100/100

Clarity SEO has no known CVEs and is actively maintained. It's a solid choice for most WordPress installations.

No known CVEs Updated 24d ago
Risk Assessment

Clarity-SEO v2.6.0 presents a mixed security posture. The plugin demonstrates good practices in many areas, with a high percentage of SQL queries using prepared statements and output correctly escaped. The absence of known CVEs and critical taint flows is a positive sign, indicating a generally stable codebase. However, there are clear areas of concern that elevate its risk profile. The presence of two unprotected AJAX handlers creates a significant attack surface, as these entry points can be leveraged by unauthenticated users to interact with the plugin's functionality, potentially leading to unintended consequences or further exploitation if vulnerabilities exist within those handlers.

The taint analysis, while not flagging critical severity issues, did identify two flows with unsanitized paths. This, combined with the unprotected AJAX handlers, suggests a potential for path traversal or similar file-based vulnerabilities if these flows are triggered by user input. The limited file operations and external HTTP requests are not inherently concerning, but their interaction with unsanitized paths warrants careful consideration. Overall, while the plugin avoids known historical vulnerabilities and has strong internal code practices, the unprotected entry points and identified taint flows represent the most significant immediate risks.

Key Concerns

  • Unprotected AJAX handlers
  • Taint flows with unsanitized paths
Vulnerabilities
None known

Clarity SEO Security Vulnerabilities

No known vulnerabilities — this is a good sign.
Code Analysis
Analyzed Mar 16, 2026

Clarity SEO Code Analysis

Dangerous Functions
0
Raw SQL Queries
3
14 prepared
Unescaped Output
6
315 escaped
Nonce Checks
9
Capability Checks
8
File Operations
1
External Requests
5
Bundled Libraries
0

SQL Query Safety

82% prepared17 total queries

Output Escaping

98% escaped321 total outputs
Data Flows
2 unsanitized

Data Flow Analysis

6 flows2 with unsanitized paths
clarity_seo_settings_page (includes\settings.php:6)
Source (user input) Sink (dangerous op) Sanitizer Transform Unsanitized Sanitized
Attack Surface
2 unprotected

Clarity SEO Attack Surface

Entry Points3
Unprotected2

AJAX Handlers 2

authwp_ajax_clarity_seo_dismiss_reviewclarity-seo.php:264
authwp_ajax_clarity_seo_bulk_generateclarity-seo.php:273

Shortcodes 1

[clarity_seo_breadcrumbs] includes\breadcrumbs.php:114
WordPress Hooks 28
actionadmin_enqueue_scriptsclarity-seo.php:101
actionwp_headclarity-seo.php:216
filterdocument_title_partsclarity-seo.php:245
actiontemplate_redirectclarity-seo.php:250
actionclarity_seo_email_reportsclarity-seo.php:255
actionadmin_noticesclarity-seo.php:451
actionadmin_menuincludes\admin-menu.php:49
actionadmin_menuincludes\admin-menu.php:93
actionadmin_headincludes\admin-menu.php:166
actionadmin_enqueue_scriptsincludes\admin-menu.php:176
actionadmin_post_clarity_seo_export_404includes\database.php:228
actionwpincludes\database.php:238
actionclarity_seo_cleanup_404includes\database.php:240
filterwp_generate_attachment_metadataincludes\image-seo.php:6
actionadmin_initincludes\image-seo.php:41
actionadmin_initincludes\import-export.php:14
actionwp_headincludes\local-seo.php:14
actionadd_meta_boxesincludes\metabox.php:39
actionsave_postincludes\metabox.php:345
filtermanage_posts_columnsincludes\metabox.php:408
filtermanage_pages_columnsincludes\metabox.php:409
actionmanage_posts_custom_columnincludes\metabox.php:442
actionmanage_pages_custom_columnincludes\metabox.php:443
actionadmin_headincludes\metabox.php:454
actionwp_headincludes\schema.php:244
actioninitincludes\sitemap.php:139
filterrobots_txtincludes\sitemap.php:150
actionclarity_seo_email_reportsincludes\tracking.php:68

Scheduled Events 2

clarity_seo_email_reports
clarity_seo_cleanup_404
Maintenance & Trust

Clarity SEO Maintenance & Trust

Maintenance Signals

WordPress version tested6.9.4
Last updatedMar 10, 2026
PHP min version7.4
Downloads384

Community Trust

Rating0/100
Number of ratings0
Active installs40
Alternatives

Clarity SEO Alternatives

Prime SEO

Prime SEO

prime-seo

A
100

SEO for the AI Era. LLMs.txt, AI Bots Manager, Schema, Sitemap — optimize for Google, ChatGPT, Perplexity & Claude. AI meta generation (Pro).

400 No CVEs
Rocketship SEO

Rocketship SEO

rocketship-seo

A
100

AI-powered WordPress SEO plugin with smart meta titles, descriptions, schema markup, sitemaps, and OpenAI & Google Gemini integration.

20 No CVEs
Advanced SEO Toolkit

Advanced SEO Toolkit

advanced-seo-toolkit

A
100

Advanced SEO Toolkit is a comprehensive solution for optimizing your WordPress site for search engines.

0 No CVEs
CSPG Basic SEO Helper

CSPG Basic SEO Helper

cspg-basic-seo-helper

A
100

Lightweight SEO helper adding Open Graph, Twitter Cards, Schema.org markup, meta templates, and XML sitemaps.

0 No CVEs
SEO Forge

SEO Forge

seo-forge

A
100

A powerful SEO plugin with support for all content types, automatic XML sitemap generation, Schema.org markup, and comprehensive analytics.

0 No CVEs
Developer Profile

Clarity SEO Developer Profile

PluginJoy

5 plugins · 50 total installs

94
trust score
Avg Security Score
100/100
Avg Patch Time
30 days
View full developer profile
Detection Fingerprints

How We Detect Clarity SEO

Patterns used to identify this plugin on WordPress sites during automated security audits and web crawling.

Asset Fingerprints

Asset Paths
/wp-content/plugins/clarity-seo/includes/admin.js
Version Parameters
clarity-seo/includes/admin.js?ver=

HTML / DOM Fingerprints

Data Attributes
data-clarity-seo-field-type
JS Globals
clarity_seo_admin_data
FAQ

Frequently Asked Questions about Clarity SEO