WP-Safety

Easy Post Re-Order Security & Risk Analysis

wordpress.org/plugins/easy-post-re-order

This Easy Post Re-order, Re order your Posts and Media (Images) using the Drag and Drop easily update your sort. Also add Ajax Features for easy order …

10 active installs v1.0 PHP + WP 6.3+ Updated Sep 19, 2024
easy-post-re-ordereasy-softoniceasysoftonicpost-re-orderposts-re-order
92
A · Safe
CVEs total0
Unpatched0
Last CVENever
Plugin page Download
Safety Verdict

Is Easy Post Re-Order Safe to Use in 2026?

Generally Safe

Score 92/100

Easy Post Re-Order has no known CVEs and is actively maintained. It's a solid choice for most WordPress installations.

No known CVEs Updated 1yr ago
Risk Assessment

The "easy-post-re-order" v1.0 plugin exhibits a mixed security posture. On the positive side, it demonstrates good practices by utilizing prepared statements for all SQL queries and performing nonce checks. It also has no recorded vulnerability history, suggesting a generally stable and secure codebase thus far.

However, significant security concerns arise from its attack surface. The plugin exposes two AJAX handlers, both of which lack authentication checks. This means that any unauthenticated user could potentially interact with these handlers, posing a risk if they can be manipulated to perform unintended actions. While the taint analysis and static code signals show no critical or high-severity issues like unsanitized paths or dangerous functions, the absence of proper authorization on critical entry points is a glaring weakness.

In conclusion, while the plugin's vulnerability history is clean and it avoids common pitfalls like raw SQL or unescaped output, the lack of authentication on its AJAX endpoints is a serious security oversight that requires immediate attention. This could lead to unauthorized actions or potential privilege escalation if these endpoints handle sensitive data or functionality.

Key Concerns

  • 2 unprotected AJAX handlers
  • Low percentage of properly escaped output
Vulnerabilities
None known

Easy Post Re-Order Security Vulnerabilities

No known vulnerabilities — this is a good sign.
Code Analysis
Analyzed Mar 17, 2026

Easy Post Re-Order Code Analysis

Dangerous Functions
0
Raw SQL Queries
0
6 prepared
Unescaped Output
8
5 escaped
Nonce Checks
1
Capability Checks
2
File Operations
0
External Requests
0
Bundled Libraries
0

SQL Query Safety

100% prepared6 total queries

Output Escaping

38% escaped13 total outputs
Data Flows
All sanitized

Data Flow Analysis

2 flows
saveArchiveAjaxOrder (files\easysoftonic-my-easy-class.php:177)
Source (user input) Sink (dangerous op) Sanitizer Transform Unsanitized Sanitized
Attack Surface
2 unprotected

Easy Post Re-Order Attack Surface

Entry Points2
Unprotected2

AJAX Handlers 2

authwp_ajax_update-custom-type-orderfiles\easysoftonic-my-easy-class.php:17
authwp_ajax_update-custom-type-order-archivefiles\easysoftonic-my-easy-class.php:18
WordPress Hooks 16
filterpre_get_postseasy-post-re-order.php:35
filterposts_orderbyeasy-post-re-order.php:74
actionadmin_noticeseasy-post-re-order.php:141
actionplugins_loadedeasy-post-re-order.php:155
actionadmin_menueasy-post-re-order.php:161
actionwp_loadedeasy-post-re-order.php:172
filteriniteasy-post-re-order.php:199
filterget_previous_post_whereeasy-post-re-order.php:214
filterget_previous_post_sorteasy-post-re-order.php:215
filterget_next_post_whereeasy-post-re-order.php:216
filterget_next_post_sorteasy-post-re-order.php:217
actionadmin_initeasy-post-re-order.php:382
actionadmin_initfiles\easysoftonic-my-easy-class.php:9
actionadmin_initfiles\easysoftonic-my-easy-class.php:10
actionadmin_menufiles\easysoftonic-my-easy-class.php:11
actionadmin_enqueue_scriptsfiles\easysoftonic-my-easy-class.php:15
Maintenance & Trust

Easy Post Re-Order Maintenance & Trust

Maintenance Signals

WordPress version tested6.6.5
Last updatedSep 19, 2024
PHP min version
Downloads4K

Community Trust

Rating0/100
Number of ratings0
Active installs10
Alternatives

Easy Post Re-Order Alternatives

Custom Content

Custom Content

custom-content

A
92

Custom Content plugin Extend the Visual Composer with ES Modules (ES Custom Content) display custom contents using shortcode, widgets and VC module.

60 No CVEs
Wp List Category Posts With Pagination

Wp List Category Posts With Pagination

wp-list-category-posts-with-pagination

A
92

Wp List Category Posts With Pagination allows you to list posts from a category into a post or page with pagination using the [es-catlist]

40 No CVEs
Custom Content Display in WooCommerce Invoicess

Custom Content Display in WooCommerce Invoicess

custom-content-for-invoices

A
92

WooCommerce Custom Content for Invoices plugin display custom contents or values into your invoices.

0 No CVEs
Developer Profile

Easy Post Re-Order Developer Profile

Umair Saleem

5 plugins · 210 total installs

88
trust score
Avg Security Score
92/100
Avg Patch Time
30 days
View full developer profile
Detection Fingerprints

How We Detect Easy Post Re-Order

Patterns used to identify this plugin on WordPress sites during automated security audits and web crawling.

Asset Fingerprints

Asset Paths
/wp-content/plugins/easy-post-re-order/css/easy-post-re-order.css/wp-content/plugins/easy-post-re-order/js/easy-post-re-order.js
Script Paths
/wp-content/plugins/easy-post-re-order/js/easy-post-re-order.js
Version Parameters
easy-post-re-order/css/easy-post-re-order.css?ver=easy-post-re-order/js/easy-post-re-order.js?ver=

HTML / DOM Fingerprints

CSS Classes
espro_sortableespro_drag_handle
Data Attributes
data-post-iddata-new-order
JS Globals
easysoftonic_post_re_orderESPROS
FAQ

Frequently Asked Questions about Easy Post Re-Order