Does Disable Author Pages have any unpatched vulnerabilities?

No. All known vulnerabilities in Disable Author Pages have been patched as of the latest data update. Always keep the plugin updated to the latest version.

Is Disable Author Pages compatible with WordPress 4.7.32?

According to WordPress.org data, Disable Author Pages 0.11 has been tested up to WordPress 4.7.32. Check the plugin's changelog for the latest compatibility information.

How often is Disable Author Pages updated?

Disable Author Pages was last updated on Nov 28, 2017. Frequent updates are generally a positive security signal.

What is Disable Author Pages's security score?

Disable Author Pages has a WP-Safety security score of 85/100. This score is computed from CVE history, patch response time, developer trust signals, and plugin maintenance activity.

Disable Author Pages Security & Risk Analysis

wordpress.org/plugins/disable-author-pages

Disable the author pages

6K active installs v0.11 PHP + WP 3.0+ Updated Nov 28, 2017

pagepostshortcodesidebarwidgets

A · Safe

CVEs total0

Unpatched0

Last CVENever

Plugin page Download

Safety Verdict

Is Disable Author Pages Safe to Use in 2026?

Generally Safe

Score 85/100

Disable Author Pages has no known CVEs and is actively maintained. It's a solid choice for most WordPress installations.

No known CVEs Updated 8yr ago

Risk Assessment

The "disable-author-pages" plugin v0.11 exhibits a mixed security posture. On the positive side, the static analysis reveals a very small attack surface, with no identified AJAX handlers, REST API routes, shortcodes, or cron events that could serve as entry points for attackers. Furthermore, the absence of known CVEs and a history free of vulnerabilities is a strong indicator of good development practices and careful maintenance. However, the code analysis does raise some significant concerns. The single SQL query present is not using prepared statements, which is a critical security weakness that could lead to SQL injection vulnerabilities. Additionally, the output escaping is not properly implemented for any of the outputs, posing a risk of cross-site scripting (XSS) attacks. The complete lack of nonce and capability checks, while potentially justified by the limited attack surface, still represents a missed opportunity for robust security, especially if the plugin's functionality were to expand in the future.

Key Concerns

SQL queries not using prepared statements
No output escaping on outputs
No nonce checks
No capability checks

Vulnerabilities

None known

Disable Author Pages Security Vulnerabilities

No known vulnerabilities — this is a good sign.

Code Analysis

Analyzed Mar 16, 2026

Disable Author Pages Code Analysis

Dangerous Functions

Raw SQL Queries

0 prepared

Unescaped Output

0 escaped

Nonce Checks

Capability Checks

File Operations

External Requests

Bundled Libraries

SQL Query Safety

0% prepared1 total queries

Output Escaping

0% escaped1 total outputs

Attack Surface

Disable Author Pages Attack Surface

Entry Points0

Unprotected0

WordPress Hooks 6

actiontemplate_redirectclass-disable-author-pages.php:30

actionadmin_initclass-disable-author-pages.php:31

actionadmin_menuclass-disable-author-pages.php:32

actionplugins_loadedclass-disable-author-pages.php:33

filterauthor_linkclass-disable-author-pages.php:34

filterplugin_action_links_disable-author-pages/disable-author-pages.phpclass-disable-author-pages.php:35

Maintenance & Trust

Disable Author Pages Maintenance & Trust

Maintenance Signals

WordPress version tested4.7.32

Last updatedNov 28, 2017

PHP min version

Downloads51K

Community Trust

Rating98/100

Number of ratings17

Active installs6K

Alternatives

Disable Author Pages Alternatives

Apollo13 Framework Extensions

apollo13-framework-extensions

Adds custom post types, shortcodes and some features that are used in themes built on Apollo13 Framework.

20K 6 CVEs

Widgets on Pages

widgets-on-pages

The easiest and highest rated way to Add Widgets or Sidebars to Posts and Pages using Visual editor, shortcodes or template tags.

20K 1 CVE

Feature A Page Widget

feature-a-page-widget

A widget to display an attractive summary of any page in any widget area.

3K No CVEs

Per Page Sidebars

per-page-sidebars

The Per Page Sidebars (PPS) plugin allows blog administrators to create a unique sidebar for each Page. No template editing is required.

1K No CVEs

Per Page Widgets

per-page-widgets

Control widget areas on a per-page / per-post basis.

300 No CVEs

Developer Profile

Disable Author Pages Developer Profile

Frank Neumann-Staude

11 plugins · 8K total installs

trust score

Avg Security Score

85/100

Avg Patch Time

30 days

View full developer profile

Detection Fingerprints

How We Detect Disable Author Pages

Patterns used to identify this plugin on WordPress sites during automated security audits and web crawling.

Asset Fingerprints

HTML / DOM Fingerprints

FAQ