Does Draft Post Generator have any unpatched vulnerabilities?

No. All known vulnerabilities in Draft Post Generator have been patched as of the latest data update. Always keep the plugin updated to the latest version.

Is Draft Post Generator compatible with WordPress 6.8.5?

According to WordPress.org data, Draft Post Generator 1.0.2 has been tested up to WordPress 6.8.5. Check the plugin's changelog for the latest compatibility information.

Is Draft Post Generator compatible with PHP 7.2+?

Draft Post Generator requires PHP 7.2 or higher. Most modern WordPress hosts run PHP 8.1 or 8.2. If you are on an older PHP version, consider upgrading before installing this plugin.

How often is Draft Post Generator updated?

Draft Post Generator was last updated on Aug 2, 2025. Frequent updates are generally a positive security signal.

What is Draft Post Generator's security score?

Draft Post Generator has a WP-Safety security score of 100/100. This score is computed from CVE history, patch response time, developer trust signals, and plugin maintenance activity.

Draft Post Generator Security & Risk Analysis

wordpress.org/plugins/draft-post-generator

Quickly generate multiple draft posts or pages with optional hierarchical structure using hyphen-based indentation.

10 active installs v1.0.2 PHP 7.2+ WP 6.0+ Updated Aug 2, 2025

adminbulkdraftpagesposts

A · Safe

CVEs total0

Unpatched0

Last CVENever

Download

Safety Verdict

Is Draft Post Generator Safe to Use in 2026?

Generally Safe

Score 100/100

Draft Post Generator has no known CVEs and is actively maintained. It's a solid choice for most WordPress installations.

No known CVEs Updated 8mo ago

Risk Assessment

The draft-post-generator plugin v1.0.2 demonstrates a generally strong security posture based on the static analysis. The absence of identified dangerous functions, SQL queries executed via prepared statements, and external HTTP requests are positive indicators. Notably, the plugin has no recorded vulnerabilities, including no known CVEs, which suggests a history of stable and secure development. The presence of nonce and capability checks further reinforces this, indicating an effort to protect against common WordPress attack vectors.

However, the static analysis reports zero identified attack surface points (AJAX, REST API, shortcodes, cron events). While this could mean the plugin is very simple, it's also unusual for a plugin that likely generates content. If there are hidden functionalities or entry points not detected by the analysis tools, this could represent an unknown risk. The taint analysis also yielded no flows, which is good, but the lack of flows itself, coupled with the zero attack surface, makes it difficult to assess how the plugin handles user-supplied data when it does interact with the WordPress environment.

In conclusion, the plugin appears to be well-developed with good security practices in place. The lack of vulnerability history is a significant strength. The primary area for caution is the reported absence of any attack surface, which might indicate either an extremely limited plugin or a potential blind spot in the analysis. Without further insight into its specific functionality and how it interacts with the WordPress core and user inputs, a definitive assessment of all potential risks is challenging.

Key Concerns

No detected attack surface.
No taint flows analyzed.

Vulnerabilities

None known

Draft Post Generator Security Vulnerabilities

No known vulnerabilities — this is a good sign.

Code Analysis

Analyzed Mar 17, 2026

Draft Post Generator Code Analysis

Dangerous Functions

Raw SQL Queries

0 prepared

Unescaped Output

11 escaped

Nonce Checks

Capability Checks

File Operations

External Requests

Bundled Libraries

Output Escaping

85% escaped13 total outputs

Attack Surface

Draft Post Generator Attack Surface

Entry Points0

Unprotected0

WordPress Hooks 4

actionplugins_loadeddraft-post-generator.php:25

actioninitdraft-post-generator.php:26

actionadmin_menudraft-post-generator.php:27

actionadmin_post_draft_post_generatorincludes\class-draft-post-admin.php:18

Maintenance & Trust

Draft Post Generator Maintenance & Trust

Maintenance Signals

WordPress version tested6.8.5

Last updatedAug 2, 2025

PHP min version7.2

Downloads264

Community Trust

Rating0/100

Number of ratings0

Active installs10

Alternatives

Draft Post Generator Alternatives

Bulk Edit YOAST SEO fields in Spreadsheet

wp-sheet-editor-yoast-seo

Bulk Edit posts, pages, and WooCommerce products YOAST SEO fields using a spreadsheet.

1K No CVEs

Columns renaming for WP Sheet Editor

wp-sheet-editor-columns-renaming

Rename spreadsheet columns when you are bulk editing Posts and Pages using the spreadsheet.

100 No CVEs

LH Archived Post Status

lh-archived-post-status

Allows posts and pages to be archived so you can remove content from the main loop and feed without having to trash it.

4K No CVEs

Sortable Word Count Reloaded

sortable-word-count-reloaded

100

Adds a sortable column to the posts and pages admin list with the word count of each page/post.

2K No CVEs

Bulk Actions Select All

bulk-actions-select-all

Adds an option to the admin posts and terms overview pages to select all items (instead of just the ones on the current page) to apply bulk actions.

900 No CVEs

Developer Profile

Draft Post Generator Developer Profile

Noah J. Stewart

4 plugins · 70 total installs

trust score

Avg Security Score

100/100

Avg Patch Time

30 days

View full developer profile

Detection Fingerprints

How We Detect Draft Post Generator

Patterns used to identify this plugin on WordPress sites during automated security audits and web crawling.

Asset Fingerprints

HTML / DOM Fingerprints

CSS Classes

noticenotice-successis-dismissible

Data Attributes

name="action"value="draft_post_generator"name="draft_post_generator_nonce"name="post_titles"name="post_type"name="post_status"

FAQ