
Duplicate It – Post & Page Duplicator for WordPress Security & Risk Analysis
wordpress.org/plugins/duplicate-itBest lightweight duplicate post plugin for WordPress. Instantly duplicate posts, pages & custom post types with one click.
Is Duplicate It – Post & Page Duplicator for WordPress Safe to Use in 2026?
Generally Safe
Score 100/100Duplicate It – Post & Page Duplicator for WordPress has no known CVEs and is actively maintained. It's a solid choice for most WordPress installations.
The static analysis of the "duplicate-it" v2.3 plugin indicates a generally good security posture with no critical or high-severity code signals identified. The absence of dangerous functions, file operations, and external HTTP requests is a positive sign. Furthermore, the plugin demonstrates a commitment to security by including nonce checks and capability checks, and a high percentage of output escaping is a strong defense against XSS vulnerabilities. The vulnerability history being clean suggests the developers have a good track record of maintaining secure code.
However, a significant concern arises from the single SQL query found, which is not using prepared statements. This represents a potential for SQL injection vulnerabilities, although the lack of taint flow analysis makes it difficult to quantify the exact risk. The attack surface is reported as zero for entry points, which is excellent, but this could be an artifact of the analysis tool or a true testament to the plugin's design.
In conclusion, the "duplicate-it" plugin exhibits several strengths in its security implementation. The lack of known vulnerabilities and the presence of good practices like output escaping and nonce checks are commendable. The primary area for improvement and potential risk lies in the handling of the SQL query. While the plugin appears robust, this single un-prepared SQL query warrants attention to ensure complete security.
Key Concerns
- SQL query not using prepared statements
Duplicate It – Post & Page Duplicator for WordPress Security Vulnerabilities
Duplicate It – Post & Page Duplicator for WordPress Release Timeline
Duplicate It – Post & Page Duplicator for WordPress Code Analysis
SQL Query Safety
Output Escaping
Duplicate It – Post & Page Duplicator for WordPress Attack Surface
WordPress Hooks 15
Maintenance & Trust
Duplicate It – Post & Page Duplicator for WordPress Maintenance & Trust
Maintenance Signals
Community Trust
Duplicate It – Post & Page Duplicator for WordPress Alternatives
Duplicate Page and Post
duplicate-wp-page-post
Duplicate post, Duplicate page and Duplicate custom post or clone page and clone post.
WP Post Page Clone
wp-post-page-clone
Clone Post or Page with it's contents and settings in just one click.
WP Duplicate Page
wp-duplicate-page
Clone WordPress page, post, custom post types
Duplicate Page or Post
duplicate-page-or-post
Duplicate Page or Post is an great tool that allow to duplicate pages and posts. Now you can do it in one click.
SM Easy Duplicator
sm-easy-duplicator
Duplicate Posts / Pages & Custom Posts easily in Just single click.
Duplicate It – Post & Page Duplicator for WordPress Developer Profile
2 plugins · 280 total installs
How We Detect Duplicate It – Post & Page Duplicator for WordPress
Patterns used to identify this plugin on WordPress sites during automated security audits and web crawling.
Asset Fingerprints
/wp-content/plugins/duplicate-it/css/duplicate-it.cssHTML / DOM Fingerprints
<!-- AUTO DETECT ACTIVE BUILDER --><!-- AUTO DETECT & APPLY BUILDER --><!-- APPLY EDITOR SETTING --><!-- All Editors ke liye kuch nahi karna -->