Does Easy PHP Settings have any unpatched vulnerabilities?

No. All known vulnerabilities in Easy PHP Settings have been patched as of the latest data update. Always keep the plugin updated to the latest version.

Is Easy PHP Settings compatible with WordPress 6.9.4?

According to WordPress.org data, Easy PHP Settings 1.1.4 has been tested up to WordPress 6.9.4. Check the plugin's changelog for the latest compatibility information.

Is Easy PHP Settings compatible with PHP 7.2+?

Easy PHP Settings requires PHP 7.2 or higher. Most modern WordPress hosts run PHP 8.1 or 8.2. If you are on an older PHP version, consider upgrading before installing this plugin.

How often is Easy PHP Settings updated?

Easy PHP Settings was last updated on Mar 14, 2026. Frequent updates are generally a positive security signal.

What is Easy PHP Settings's security score?

Easy PHP Settings has a WP-Safety security score of 97/100. This score is computed from CVE history, patch response time, developer trust signals, and plugin maintenance activity.

Easy PHP Settings Security & Risk Analysis

wordpress.org/plugins/easy-php-settings

An easy way to manage common PHP INI settings and WordPress debugging constants from the WordPress admin panel.

1K active installs v1.1.4 PHP 7.2+ WP 5.0+ Updated Mar 14, 2026

debuginiperformancephp-settingswp-config

A · Safe

CVEs total1

Unpatched0

Last CVEMar 6, 2026

Plugin page Download

Safety Verdict

Is Easy PHP Settings Safe to Use in 2026?

Generally Safe

Score 97/100

Easy PHP Settings has a strong security track record. Known vulnerabilities have been patched promptly.

1 known CVELast CVE: Mar 6, 2026Updated 20d ago

Risk Assessment

The static analysis of easy-php-settings v1.1.4 reveals a generally strong security posture. The plugin boasts a zero-count for direct attack surface entry points like AJAX handlers, REST API routes, shortcodes, and cron events, which is excellent. Furthermore, the code signals indicate a good adoption of secure coding practices, with a high percentage of SQL queries using prepared statements and output being properly escaped. The presence of nonce and capability checks further bolsters its defensive mechanisms. However, the analysis does flag one file operation and four external HTTP requests, which could potentially be points of concern if not handled with extreme care.

Key Concerns

One high severity vulnerability historically
One file operation detected
Four external HTTP requests detected

Vulnerabilities

Easy PHP Settings Security Vulnerabilities

CVEs by Year

1 CVE in 2026

2026

Patched Has unpatched

Severity Breakdown

High

1 total CVE

CVE-2026-3352high · 7.2Improper Control of Generation of Code ('Code Injection')

Easy PHP Settings <= 1.0.4 - Authenticated (Administrator+) PHP Code Injection via 'wp_memory_limit' Setting

Mar 6, 2026 Patched in 1.0.5 (1d)

Code Analysis

Analyzed Mar 16, 2026

Easy PHP Settings Code Analysis

Dangerous Functions

Raw SQL Queries

20 prepared

Unescaped Output

139 escaped

Nonce Checks

Capability Checks

File Operations

External Requests

Bundled Libraries

SQL Query Safety

91% prepared22 total queries

Output Escaping

93% escaped150 total outputs

Attack Surface

Easy PHP Settings Attack Surface

Entry Points0

Unprotected0

WordPress Hooks 13

actioninitclass-easy-php-settings.php:117

actioninitclass-easy-php-settings.php:118

actioninitclass-easy-php-settings.php:119

actionadmin_enqueue_scriptsclass-easy-php-settings.php:123

actionadmin_initclass-easy-php-settings.php:126

actionadmin_enqueue_scriptsclass-easy-php-settings.php:127

actionupgrader_process_completeincludes\plugin-tracker-integration.php:239

actioninitincludes\plugin-tracker-integration.php:260

actionwp_dashboard_setupincludes\plugin-tracker-integration.php:299

actionadmin_noticesincludes\plugin-tracker-integration.php:343

actionadmin_initincludes\plugin-tracker-integration.php:376

actionadmin_initmodules\class-module-general-settings.php:26

actionadmin_initmodules\class-module-tools.php:24

Maintenance & Trust

Easy PHP Settings Maintenance & Trust

Maintenance Signals

WordPress version tested6.9.4

Last updatedMar 14, 2026

PHP min version7.2

Downloads5K

Community Trust

Rating100/100

Number of ratings2

Active installs1K

Alternatives

Easy PHP Settings Alternatives

WP-Optimize – Cache, Compress images, Minify & Clean database to boost page speed & performance

wp-optimize

Get caching and more with this powerful cache plugin. Cache, optimize images, clean your database and minify for maximum performance.

1.0M 3 CVEs

Query Monitor – The developer tools panel for WordPress

query-monitor

100

Query Monitor is the developer tools panel for WordPress and WooCommerce.

200K No CVEs

Hummingbird Performance – Cache & Page Speed Optimization for Core Web Vitals | Critical CSS | Minify CSS | Defer CSS Javascript | CDN

hummingbird-performance

Optimize PageSpeed Performance & Core Web Vitals, Advanced Cache, Minify CSS & JavaScript, Inline Critical CSS, Defer CSS & JS, Smush & Lazy Load, CDN

80K 6 CVEs

Clearfy Cache – WordPress optimization plugin, Minify HTML, CSS & JS, Defer

clearfy

Optimize and tweak WordPress by disable unused features. Improve performance, SEO and security using Clearfy — super easy, fast and zero code.

50K 6 CVEs

WP Debugging

wp-debugging

A support/troubleshooting plugin for WordPress.

10K 2 CVEs

Developer Profile

Easy PHP Settings Developer Profile

shahadul878

1 plugin · 1K total installs

trust score

Avg Security Score

97/100

Avg Patch Time

1 days

View full developer profile

Detection Fingerprints

How We Detect Easy PHP Settings

Patterns used to identify this plugin on WordPress sites during automated security audits and web crawling.

Asset Fingerprints

Asset Paths

/wp-content/plugins/easy-php-settings/css/easy-php-settings.css/wp-content/plugins/easy-php-settings/js/easy-php-settings.js/wp-content/plugins/easy-php-settings/css/easy-php-settings-frontend.css/wp-content/plugins/easy-php-settings/js/easy-php-settings-frontend.js

Script Paths

/wp-content/plugins/easy-php-settings/js/easy-php-settings.js/wp-content/plugins/easy-php-settings/js/easy-php-settings-frontend.js

Version Parameters

easy-php-settings/css/easy-php-settings.css?ver=easy-php-settings/js/easy-php-settings.js?ver=easy-php-settings/css/easy-php-settings-frontend.css?ver=easy-php-settings/js/easy-php-settings-frontend.js?ver=

HTML / DOM Fingerprints

CSS Classes

easy-php-settings-pageeasy-php-settings-tabeasy-php-settings-tab-contenteps-setting-inputeps-labeleps-description

Data Attributes

data-eps-setting-key

JS Globals

easy_php_settings_ajax_object

REST Endpoints

/wp-json/easy-php-settings/v1/settings

FAQ