Does Display Medium Stories – Medium Articles in a WordPress Site have any unpatched vulnerabilities?

No. All known vulnerabilities in Display Medium Stories – Medium Articles in a WordPress Site have been patched as of the latest data update. Always keep the plugin updated to the latest version.

Is Display Medium Stories – Medium Articles in a WordPress Site compatible with WordPress 6.8.5?

According to WordPress.org data, Display Medium Stories – Medium Articles in a WordPress Site 7.5.7 has been tested up to WordPress 6.8.5. Check the plugin's changelog for the latest compatibility information.

Is Display Medium Stories – Medium Articles in a WordPress Site compatible with PHP 7.4+?

Display Medium Stories – Medium Articles in a WordPress Site requires PHP 7.4 or higher. Most modern WordPress hosts run PHP 8.1 or 8.2. If you are on an older PHP version, consider upgrading before installing this plugin.

Display Medium Stories – Medium Articles in a WordPress Site Security & Risk Analysis

wordpress.org/plugins/display-medium-stories

Display Medium Stories is a powerful, professionally developed tool to show Medium stories in WordPress websites.

10 active installs v7.5.7 PHP 7.4+ WP 6.0+ Updated Jun 13, 2025

articlesbloggingcontentmediumwordpress-blog

A · Safe

CVEs total0

Unpatched0

Last CVENever

Plugin page Download

Safety Verdict

Is Display Medium Stories – Medium Articles in a WordPress Site Safe to Use in 2026?

Generally Safe

Score 100/100

Display Medium Stories – Medium Articles in a WordPress Site has no known CVEs and is actively maintained. It's a solid choice for most WordPress installations.

No known CVEs Updated 9mo ago

Risk Assessment

The plugin "display-medium-stories" v7.5.7 exhibits a mixed security posture. On the positive side, it demonstrates good practices regarding SQL queries, exclusively using prepared statements, and has a high rate of proper output escaping. Furthermore, the absence of known CVEs and vulnerabilities in its history suggests a generally stable and well-maintained codebase. However, significant concerns arise from the attack surface analysis. The presence of two AJAX handlers without authentication checks presents a clear risk, as these entry points are potentially exploitable by unauthenticated users.

The taint analysis, while not revealing critical or high severity issues, did identify two flows with unsanitized paths. While the severity is not explicitly detailed, any unsanitized path can be a precursor to vulnerabilities if not handled carefully in conjunction with other factors. The lack of nonce checks on AJAX handlers further exacerbates this risk, as it provides an additional layer of defense that is entirely missing.

In conclusion, the plugin's strengths lie in its secure database interactions and output handling. However, the unprotected AJAX endpoints and the presence of unsanitized paths are significant weaknesses that require immediate attention. The lack of historical vulnerabilities is a positive indicator, but it does not negate the risks posed by the identified code signals. A balanced assessment reveals a plugin that is generally well-coded in certain areas but has critical flaws in its exposed entry points.

Key Concerns

AJAX handlers without auth checks
Unsanitized paths in taint analysis
Missing nonce checks on AJAX

Vulnerabilities

None known

Display Medium Stories – Medium Articles in a WordPress Site Security Vulnerabilities

No known vulnerabilities — this is a good sign.

Code Analysis

Analyzed Mar 16, 2026

Display Medium Stories – Medium Articles in a WordPress Site Code Analysis

Dangerous Functions

Raw SQL Queries

0 prepared

Unescaped Output

59 escaped

Nonce Checks

Capability Checks

File Operations

External Requests

Bundled Libraries

Output Escaping

97% escaped61 total outputs

Data Flows

2 unsanitized

Data Flow Analysis

2 flows2 with unsanitized paths

load_more_zigzag (includes\load-more.php:11)

Source (user input) Sink (dangerous op) Sanitizer Transform Unsanitized Sanitized

Attack Surface

2 unprotected

Display Medium Stories – Medium Articles in a WordPress Site Attack Surface

Entry Points3

Unprotected2

AJAX Handlers 2

authwp_ajax_load_more_zigzagincludes\load-more.php:6

noprivwp_ajax_load_more_zigzagincludes\load-more.php:7

Shortcodes 1

[display-medium-article] views\shortcode.php:773

WordPress Hooks 7

actionwp_enqueue_scriptsincludes\enqueue.php:27

actionwp_enqueue_scriptsincludes\enqueue.php:43

actionwp_enqueue_scriptsincludes\enqueue.php:63

actionwp_enqueue_scriptsincludes\enqueue.php:99

actioninitincludes\settings.php:5

actionadmin_enqueue_scriptsincludes\settings.php:43

actionadmin_menuincludes\side-menu.php:15

Maintenance & Trust

Display Medium Stories – Medium Articles in a WordPress Site Maintenance & Trust

Maintenance Signals

WordPress version tested6.8.5

Last updatedJun 13, 2025

PHP min version7.4

Downloads1K

Community Trust

Rating0/100

Number of ratings0

Active installs10

Alternatives

Display Medium Stories – Medium Articles in a WordPress Site Alternatives

IntelliDraft

intellidraft

IntelliDraft is a WordPress plugin that uses AI to streamline content creation, helping users easily produce and optimize high-quality content.

0 No CVEs

Automatik Blog

automatik-blog

A plugin for integration with Automatik Blog, allowing automated publishing of SEO-optimized articles via REST API.

1K No CVEs

GetAutoSEO AI Tool

getautoseo-ai-content-publisher

100

Automate your SEO content creation and publishing with AI-powered tools. Generate high-quality articles and publish directly to WordPress.

700 No CVEs

Kafkai – AI Writer Plugin

kafkai

Plugin to generate and import articles from Kafkai. Learn more in the Help Article

400 No CVEs

ContentPen

contentpen

100

AI-Powered SEO Content Writing Assistant

200 No CVEs

Developer Profile

Display Medium Stories – Medium Articles in a WordPress Site Developer Profile

Devmont Digital

4 plugins · 10 total installs

trust score

Avg Security Score

100/100

Avg Patch Time

30 days

View full developer profile

Detection Fingerprints

How We Detect Display Medium Stories – Medium Articles in a WordPress Site

Patterns used to identify this plugin on WordPress sites during automated security audits and web crawling.

Asset Fingerprints

Asset Paths

/wp-content/plugins/display-medium-stories/assets/css/style.css/wp-content/plugins/display-medium-stories/assets/js/client-script.js/wp-content/plugins/display-medium-stories/assets/css/swiper-bundle.min.css/wp-content/plugins/display-medium-stories/assets/bootstrap/css/bootstrap.min.css/wp-content/plugins/display-medium-stories/assets/js/swiper-bundle.min.js/wp-content/plugins/display-medium-stories/assets/bootstrap/js/popper.min.js/wp-content/plugins/display-medium-stories/assets/bootstrap/js/bootstrap.min.js/wp-content/plugins/display-medium-stories/assets/css/slider.css+7 more

Script Paths

/wp-content/plugins/display-medium-stories/assets/js/client-script.js/wp-content/plugins/display-medium-stories/assets/js/swiper-bundle.min.js/wp-content/plugins/display-medium-stories/assets/bootstrap/js/popper.min.js/wp-content/plugins/display-medium-stories/assets/bootstrap/js/bootstrap.min.js/wp-content/plugins/display-medium-stories/assets/js/masonry.pkgd.min.js

Version Parameters

/wp-content/plugins/display-medium-stories/assets/css/style.css?ver=/wp-content/plugins/display-medium-stories/assets/js/client-script.js?ver=/wp-content/plugins/display-medium-stories/assets/css/masonry.css?ver=/wp-content/plugins/display-medium-stories/assets/css/zigzag.css?ver=

HTML / DOM Fingerprints

JS Globals

mp_ajax_obj

FAQ