WP-Safety

Easy Post Types and Fields Security & Risk Analysis

wordpress.org/plugins/easy-post-types-fields

Easy Post Types and Fields makes it quick and easy to add custom post types, custom fields, and taxonomies to your WordPress website.

1K active installs v1.1.14 PHP 7.4+ WP 6.1+ Updated Dec 4, 2025
custom-datacustom-fieldcustom-post-typecustom-taxonomymeta-fields
100
A · Safe
CVEs total0
Unpatched0
Last CVENever
Plugin page Download
Safety Verdict

Is Easy Post Types and Fields Safe to Use in 2026?

Generally Safe

Score 100/100

Easy Post Types and Fields has no known CVEs and is actively maintained. It's a solid choice for most WordPress installations.

No known CVEs Updated 4mo ago
Risk Assessment

The "easy-post-types-fields" plugin version 1.1.14 exhibits a generally strong security posture based on the provided static analysis. The absence of any recorded CVEs, critical or high severity taint flows, raw SQL queries, or unprotected entry points is highly encouraging. The plugin also demonstrates good practices by consistently using prepared statements for SQL queries and implementing nonce and capability checks for its entry points. However, a significant concern is the relatively low percentage of properly escaped output (49%). This indicates a potential for Cross-Site Scripting (XSS) vulnerabilities, as user-supplied data might be rendered directly in the browser without sufficient sanitization, allowing attackers to inject malicious scripts. While the plugin currently has no known vulnerabilities, this output escaping weakness could be a significant attack vector if exploited.

Key Concerns

  • Low percentage of properly escaped output
Vulnerabilities
None known

Easy Post Types and Fields Security Vulnerabilities

No known vulnerabilities — this is a good sign.
Code Analysis
Analyzed Mar 16, 2026

Easy Post Types and Fields Code Analysis

Dangerous Functions
0
Raw SQL Queries
0
8 prepared
Unescaped Output
178
174 escaped
Nonce Checks
10
Capability Checks
4
File Operations
0
External Requests
1
Bundled Libraries
0

SQL Query Safety

100% prepared8 total queries

Output Escaping

49% escaped352 total outputs
Data Flows
All sanitized

Data Flow Analysis

3 flows
<html-manage-page-fields> (src\Admin\views\html-manage-page-fields.php:0)
Source (user input) Sink (dangerous op) Sanitizer Transform Unsanitized Sanitized
Attack Surface

Easy Post Types and Fields Attack Surface

Entry Points2
Unprotected0

AJAX Handlers 2

authwp_ajax_ept_inline_deletesrc\Admin\CPT_Editor.php:121
authwp_ajax_ept_dismiss_noticesrc\Admin\Review_Notice.php:39
WordPress Hooks 14
actionadmin_enqueue_scriptssrc\Admin\Admin_Controller.php:54
actionadmin_enqueue_scriptssrc\Admin\CPT_Editor.php:118
actionadmin_menusrc\Admin\CPT_Editor.php:119
actionadmin_initsrc\Admin\CPT_Editor.php:123
actionadmin_noticessrc\Admin\CPT_Editor.php:124
filtermenu_ordersrc\Admin\CPT_Editor.php:126
filtercustom_menu_ordersrc\Admin\CPT_Editor.php:127
actionadmin_initsrc\Admin\Plugin_Setup.php:63
actiontransition_post_statussrc\Admin\Review_Notice.php:37
actionadmin_noticessrc\Admin\Review_Notice.php:38
filtermanage_edit-product_columnssrc\Admin\Taxonomy_Columns.php:24
actioncurrent_screensrc\Admin\Taxonomy_Columns.php:25
filteradmin_body_classsrc\Admin\Wizard\Setup_Wizard.php:75
actionpre_post_updatesrc\Post_Types\Abstract_Post_Type.php:149
Maintenance & Trust

Easy Post Types and Fields Maintenance & Trust

Maintenance Signals

WordPress version tested6.9.4
Last updatedDec 4, 2025
PHP min version7.4
Downloads23K

Community Trust

Rating54/100
Number of ratings3
Active installs1K
Alternatives

Easy Post Types and Fields Alternatives

Elite Stay Helper – Create Cpts and taxonomy for rooms

Elite Stay Helper – Create Cpts and taxonomy for rooms

elite-stay-helper

A
92

The plugin by Kamaldhari Infotech streamlines hotel management, offering custom post types, taxonomy, and meta fields. Easily handle rooms,testimonial &hellip;

0 No CVEs
Meta Box

Meta Box

meta-box

A
89

Meta Box plugin is a powerful, professional developer toolkit to create custom meta boxes and custom fields for your custom post types in WordPress.

500K 6 CVEs
Pods – Custom Content Types and Fields

Pods – Custom Content Types and Fields

pods

A
87

Pods is a framework for creating, managing, and deploying customized content types and fields for any project.

100K 14 CVEs
Sydney Toolbox

Sydney Toolbox

sydney-toolbox

A
89

Registers custom post types and custom fields for the Sydney theme

60K 5 CVEs
Custom Post Types and Custom Fields creator – WCK

Custom Post Types and Custom Fields creator – WCK

wck-custom-fields-and-custom-post-types-creator

A
100

A must have tool for creating custom fields, custom post types and taxonomies, fast and without any programming knowledge.

10K 1 CVE
Developer Profile

Easy Post Types and Fields Developer Profile

Barn2 Plugins

5 plugins · 21K total installs

98
trust score
Avg Security Score
97/100
Avg Patch Time
5 days
View full developer profile
Detection Fingerprints

How We Detect Easy Post Types and Fields

Patterns used to identify this plugin on WordPress sites during automated security audits and web crawling.

Asset Fingerprints

Asset Paths
/wp-content/plugins/easy-post-types-fields/dependencies/barn2/barn2-lib/build/css/plugin-promo-styles.css
Version Parameters
easy-post-types-fields/dependencies/barn2/barn2-lib/build/css/plugin-promo-styles.css?ver=

HTML / DOM Fingerprints

CSS Classes
barn2-plugins-promo-wrapper
FAQ

Frequently Asked Questions about Easy Post Types and Fields