WP-Safety

Conditional Content Block – AI Citation Optimizer Security & Risk Analysis

wordpress.org/plugins/conditional-content-block

Improve AI citation readiness and control content visibility in WordPress.

0 active installs v2.0.1 PHP + WP 5.8+ Updated Unknown
ai-seoanswer-engine-optimizationconditional-contentcontent-optimizationfaq-block
100
A · Safe
CVEs total0
Unpatched0
Last CVENever
Download
Safety Verdict

Is Conditional Content Block – AI Citation Optimizer Safe to Use in 2026?

Generally Safe

Score 100/100

Conditional Content Block – AI Citation Optimizer has no known CVEs and is actively maintained. It's a solid choice for most WordPress installations.

No known CVEs
Risk Assessment

The conditional-content-block plugin v2.0.1 exhibits a concerning security posture primarily due to its unprotected attack surface. With 8 AJAX handlers identified and all of them lacking authentication checks, this presents a significant risk of unauthorized actions being performed by unauthenticated users. While the plugin demonstrates good practices in other areas, such as 100% prepared SQL statements and no known vulnerabilities, the unprotected AJAX handlers are a critical flaw that could be exploited to manipulate plugin functionality or potentially lead to other security issues depending on what these handlers do.

Although the static analysis found no dangerous functions or critical taint flows, the lack of output escaping on 59% of outputs (136 total outputs, 41% properly escaped) raises concerns about potential cross-site scripting (XSS) vulnerabilities. The presence of 2 nonce checks and 6 capability checks suggests some attempt at security, but these are not applied universally to the identified AJAX entry points. The plugin's clean vulnerability history is a positive sign, but it does not mitigate the immediate risks posed by the current static analysis findings.

In conclusion, the plugin has strengths in its handling of SQL and its lack of historical vulnerabilities. However, these are overshadowed by the critical weaknesses of an entirely unprotected AJAX attack surface and a significant amount of improperly escaped output. The plugin requires immediate attention to secure its AJAX handlers and address the output escaping issues to reduce its risk profile.

Key Concerns

  • All AJAX handlers lack authentication checks
  • Significant amount of unescaped output
Vulnerabilities
None known

Conditional Content Block – AI Citation Optimizer Security Vulnerabilities

No known vulnerabilities — this is a good sign.
Code Analysis
Analyzed Mar 17, 2026

Conditional Content Block – AI Citation Optimizer Code Analysis

Dangerous Functions
0
Raw SQL Queries
0
0 prepared
Unescaped Output
80
56 escaped
Nonce Checks
2
Capability Checks
6
File Operations
0
External Requests
6
Bundled Libraries
0

Output Escaping

41% escaped136 total outputs
Attack Surface
8 unprotected

Conditional Content Block – AI Citation Optimizer Attack Surface

Entry Points8
Unprotected8

AJAX Handlers 8

authwp_ajax_mkaion_ccb_analyze_contentincludes\ajax-handlers.php:141
authwp_ajax_mkaion_ccb_generate_quick_answerincludes\ajax-handlers.php:175
authwp_ajax_mkaion_ccb_generate_faqincludes\ajax-handlers.php:212
authwp_ajax_mkaion_ccb_apply_ai_fixincludes\ajax-handlers.php:259
authwp_ajax_mkaion_ccb_analyze_contenttrunk\includes\ajax-handlers.php:141
authwp_ajax_mkaion_ccb_generate_quick_answertrunk\includes\ajax-handlers.php:175
authwp_ajax_mkaion_ccb_generate_faqtrunk\includes\ajax-handlers.php:212
authwp_ajax_mkaion_ccb_apply_ai_fixtrunk\includes\ajax-handlers.php:259
WordPress Hooks 16
actionadmin_initadmin\settings-page.php:26
actionadmin_menuadmin\settings-page.php:77
actionplugins_loadedconditional-content-block.php:41
actionadmin_initconditional-content-block.php:68
actioninitconditional-content-block.php:256
actioninitconditional-content-block.php:316
actionenqueue_block_editor_assetsconditional-content-block.php:326
actionwp_enqueue_scriptsconditional-content-block.php:334
actionadmin_inittrunk\admin\settings-page.php:26
actionadmin_menutrunk\admin\settings-page.php:77
actionplugins_loadedtrunk\conditional-content-block.php:41
actionadmin_inittrunk\conditional-content-block.php:68
actioninittrunk\conditional-content-block.php:256
actioninittrunk\conditional-content-block.php:316
actionenqueue_block_editor_assetstrunk\conditional-content-block.php:326
actionwp_enqueue_scriptstrunk\conditional-content-block.php:334
Maintenance & Trust

Conditional Content Block – AI Citation Optimizer Maintenance & Trust

Maintenance Signals

WordPress version tested6.9.4
Last updatedUnknown
PHP min version
Downloads611

Community Trust

Rating0/100
Number of ratings0
Active installs0
Alternatives

Conditional Content Block – AI Citation Optimizer Alternatives

Block Visibility — Conditional Visibility Control for the Block Editor

Block Visibility — Conditional Visibility Control for the Block Editor

block-visibility

A
100

Easily show or hide any WordPress block. Schedule block visibility. Restrict blocks to specific screen sizes, user roles, post types, and more.

40K No CVEs
Ultimate FAQ Accordion Plugin

Ultimate FAQ Accordion Plugin

ultimate-faqs

A
89

Full-featured FAQ and accordion plugin with advanced search, simple UI and easy-to-use FAQ blocks and shortcodes.

30K 6 CVEs
Easy Accordion Block

Easy Accordion Block

easy-accordion-block

A
99

Easy Accordion Block allows you to create an accordion or a FAQs section in Gutenberg editor easily.

7K 1 CVE
FAQ Block For Gutenberg

FAQ Block For Gutenberg

faq-block-for-gutenberg

A
92

This plugin provides a quick and easy way to add FAQ's block using Gutenberg visual editor.

4K No CVEs
FAQly – Ultimate FAQ

FAQly – Ultimate FAQ

faqly-ultimate-faq

A
100

FAQly – Ultimate FAQ Plugin: A plugin to manage FAQs and display them as an accordion using a shortcode.

1K No CVEs
Developer Profile

Conditional Content Block – AI Citation Optimizer Developer Profile

Mainul Kabir Aion

3 plugins · 60 total installs

94
trust score
Avg Security Score
100/100
Avg Patch Time
30 days
View full developer profile
Detection Fingerprints

How We Detect Conditional Content Block – AI Citation Optimizer

Patterns used to identify this plugin on WordPress sites during automated security audits and web crawling.

Asset Fingerprints

Asset Paths
/wp-content/plugins/conditional-content-block/style.css/wp-content/plugins/conditional-content-block/assets/admin.css/wp-content/plugins/conditional-content-block/block.js/wp-content/plugins/conditional-content-block/blocks/quick-answer-block/index.js/wp-content/plugins/conditional-content-block/blocks/faq-block/index.js/wp-content/plugins/conditional-content-block/assets/admin.js
Script Paths
/wp-content/plugins/conditional-content-block/block.js/wp-content/plugins/conditional-content-block/blocks/quick-answer-block/index.js/wp-content/plugins/conditional-content-block/blocks/faq-block/index.js/wp-content/plugins/conditional-content-block/assets/admin.js
Version Parameters
conditional-content-block/style.css?ver=conditional-content-block/assets/admin.css?ver=conditional-content-block/block.js?ver=conditional-content-block/blocks/quick-answer-block/index.js?ver=conditional-content-block/blocks/faq-block/index.js?ver=conditional-content-block/assets/admin.js?ver=

HTML / DOM Fingerprints

CSS Classes
mkaion-ccb-settings-page
Data Attributes
data-mkaion-ccb-visibilitydata-mkaion-ccb-fallback-textdata-mkaion-ccb-rolesdata-mkaion-ccb-device-typesdata-mkaion-ccb-start-date-timedata-mkaion-ccb-end-date-time+5 more
JS Globals
conditionalContentBlock
FAQ

Frequently Asked Questions about Conditional Content Block – AI Citation Optimizer