Does Climate Tagger have any unpatched vulnerabilities?

No. All known vulnerabilities in Climate Tagger have been patched as of the latest data update. Always keep the plugin updated to the latest version.

Is Climate Tagger compatible with WordPress 4.6.30?

According to WordPress.org data, Climate Tagger 1.0.3 has been tested up to WordPress 4.6.30. Check the plugin's changelog for the latest compatibility information.

How often is Climate Tagger updated?

Climate Tagger was last updated on Sep 23, 2016. Frequent updates are generally a positive security signal.

What is Climate Tagger's security score?

Climate Tagger has a WP-Safety security score of 85/100. This score is computed from CVE history, patch response time, developer trust signals, and plugin maintenance activity.

Climate Tagger Security & Risk Analysis

wordpress.org/plugins/climate-tagger

Suggests tags for your posts based on an experts-vetted climate thesaurus, using the Climate Tagger API

10 active installs v1.0.3 PHP + WP 3.7+ Updated Sep 23, 2016

climate-taggersuggestiontag-cloudtag-suggestiontags

A · Safe

CVEs total0

Unpatched0

Last CVENever

Download

Safety Verdict

Is Climate Tagger Safe to Use in 2026?

Generally Safe

Score 85/100

Climate Tagger has no known CVEs and is actively maintained. It's a solid choice for most WordPress installations.

No known CVEs Updated 9yr ago

Risk Assessment

The plugin "climate-tagger" v1.0.3 exhibits a strong security posture based on the provided static analysis. The complete absence of AJAX handlers, REST API routes, shortcodes, and cron events significantly limits the potential attack surface, and crucially, there are no unprotected entry points. Furthermore, the code demonstrates good practices in database interaction by utilizing prepared statements for all SQL queries. However, a significant concern arises from the low percentage (33%) of properly escaped output, which could lead to Cross-Site Scripting (XSS) vulnerabilities if user-supplied data is directly rendered without adequate sanitization. The plugin's vulnerability history is clean, with no known CVEs, suggesting a generally well-maintained codebase, but this does not negate the risks identified in the static analysis. The lack of any taint analysis results might be due to the limited attack surface or a limitation of the analysis tool itself, but the output escaping issue remains a tangible risk.

Key Concerns

Low percentage of properly escaped output

Vulnerabilities

None known

Climate Tagger Security Vulnerabilities

No known vulnerabilities — this is a good sign.

Code Analysis

Analyzed Mar 17, 2026

Climate Tagger Code Analysis

Dangerous Functions

Raw SQL Queries

0 prepared

Unescaped Output

3 escaped

Nonce Checks

Capability Checks

File Operations

External Requests

Bundled Libraries

Output Escaping

33% escaped9 total outputs

Attack Surface

Climate Tagger Attack Surface

Entry Points0

Unprotected0

WordPress Hooks 4

actionadmin_menuclimate-tagger.php:318

actionadmin_initclimate-tagger.php:319

actionadmin_menuclimate-tagger.php:320

actionadmin_print_scriptsclimate-tagger.php:321

Maintenance & Trust

Climate Tagger Maintenance & Trust

Maintenance Signals

WordPress version tested4.6.30

Last updatedSep 23, 2016

PHP min version

Downloads2K

Community Trust

Rating0/100

Number of ratings0

Active installs10

Alternatives

Climate Tagger Alternatives

Ultimate Tag Cloud Widget

ultimate-tag-cloud-widget

This plugin aims to be the most configurable tag cloud widget out there, able to suit all your weird tag cloud needs.

4K No CVEs

Tag Groups is the Advanced Way to Display Your Taxonomy Terms

tag-groups

Tag Groups allows you to organize your WordPress taxonomy terms and show them in clouds, tabs, accordions, tables, lists and much more.

3K 2 CVEs

Configurable Tag Cloud (CTC)

configurable-tag-cloud-widget

Display a tag cloud customized with your preferences in the sidebar.

2K 1 CVE

WP Keyword Suggest

wp-keyword-suggest

This SEO plugin offers keyword suggestions, taken from autocomplete google, yahoo, bing... up to 250 keywords ideas

600 No CVEs

Page Tag Cloud

page-tag-cloud

This plugin allows you to add tags to pages and display them in a tag cloud widget.

500 No CVEs

Developer Profile

Climate Tagger Developer Profile

captivateaudio

4 plugins · 1K total installs

trust score

Avg Security Score

91/100

Avg Patch Time

76 days

View full developer profile

Detection Fingerprints

How We Detect Climate Tagger

Patterns used to identify this plugin on WordPress sites during automated security audits and web crawling.

Asset Fingerprints

Asset Paths

/wp-content/plugins/climate-tagger/js/climate-tagger-admin.js/wp-content/plugins/climate-tagger/css/climate-tagger-admin.css

Script Paths

/wp-content/plugins/climate-tagger/js/climate-tagger-admin.js

Version Parameters

climate-tagger/js/climate-tagger-admin.js?ver=climate-tagger/css/climate-tagger-admin.css?ver=

HTML / DOM Fingerprints

CSS Classes

wrap

Data Attributes

id="climate-tagger-token"name="climate_tagger_general_settings[token]"id="climate-tagger-project"name="climate_tagger_general_settings[project]"id="climate-tagger-post-types"name="climate_tagger_general_settings[post_types]"+2 more

JS Globals

tag_add

REST Endpoints

/wp-json/climate-tagger/v1/projects/wp-json/climate-tagger/v1/extract

Shortcode Output

Suggested Tags (Climate Tagger)<a href="#" style="font-size:pt;" onClick="tag_add('');return false;">

FAQ