WP-Safety

Easy Schema – Structured Data & Rich Snippets Security & Risk Analysis

wordpress.org/plugins/easy-schema-structured-data-rich-snippets

🚀 Easy Schema allows you to add Schema, structured data and rich snippets to your WordPress website, giving the search engines all the information the …

300 active installs v2.3.0 PHP 5.6+ WP 5.0+ Updated Mar 8, 2024
google-snippetsrich-snippetsschemaschema-markupstructured-data
85
A · Safe
CVEs total0
Unpatched0
Last CVENever
Plugin page Download
Safety Verdict

Is Easy Schema – Structured Data & Rich Snippets Safe to Use in 2026?

Generally Safe

Score 85/100

Easy Schema – Structured Data & Rich Snippets has no known CVEs and is actively maintained. It's a solid choice for most WordPress installations.

No known CVEs Updated 2yr ago
Risk Assessment

The 'easy-schema-structured-data-rich-snippets' v2.3.0 plugin exhibits a generally strong security posture based on this analysis. The absence of known CVEs and critical taint flows is a significant positive. The plugin also demonstrates good practice by including nonce and capability checks on its entry points, and a reasonable portion of its SQL queries utilize prepared statements.

However, there are areas for improvement. The taint analysis revealed flows with unsanitized paths, which could potentially lead to security vulnerabilities if not handled carefully. Furthermore, only 55% of output is properly escaped, indicating a risk of cross-site scripting (XSS) vulnerabilities. The presence of file operations and external HTTP requests also warrants careful review to ensure these functionalities are implemented securely.

While the vulnerability history is clean, the static analysis flags potential weaknesses that could be exploited. The plugin's strengths lie in its lack of publicly known vulnerabilities and its implementation of some security best practices. Its weaknesses are primarily in the handling of unsanitized paths and insufficient output escaping, which are common vectors for exploitation. Overall, the plugin appears relatively secure but requires attention to the identified code signals and taint analysis findings to mitigate potential risks.

Key Concerns

  • Flows with unsanitized paths found
  • Only 55% of output properly escaped
  • 50% of SQL queries not using prepared statements
  • Bundled Freemius v1.0 library
Vulnerabilities
None known

Easy Schema – Structured Data & Rich Snippets Security Vulnerabilities

No known vulnerabilities — this is a good sign.
Code Analysis
Analyzed Mar 16, 2026

Easy Schema – Structured Data & Rich Snippets Code Analysis

Dangerous Functions
0
Raw SQL Queries
2
2 prepared
Unescaped Output
506
629 escaped
Nonce Checks
3
Capability Checks
4
File Operations
1
External Requests
3
Bundled Libraries
1

Bundled Libraries

Freemius1.0

SQL Query Safety

50% prepared4 total queries

Output Escaping

55% escaped1135 total outputs
Data Flows
2 unsanitized

Data Flow Analysis

5 flows2 with unsanitized paths
install_plugin_information (freemius-old\includes\fs-plugin-info-dialog.php:929)
Source (user input) Sink (dangerous op) Sanitizer Transform Unsanitized Sanitized
Attack Surface

Easy Schema – Structured Data & Rich Snippets Attack Surface

Entry Points3
Unprotected0

Shortcodes 3

[faq_schema] site-display-schema\es-admin-site-faq-schema-functions.php:68
[local_schema] site-display-schema\es-admin-site-local-business-schema-functions.php:131
[JSONSchema-product-schema] site-display-schema\es-admin-site-woocommerce-schema-functions.php:62
WordPress Hooks 34
actionadmin_menueasy-schema.php:70
actionadmin_initeasy-schema.php:90
actionadmin_enqueue_scriptseasy-schema.php:103
actionadmin_footerfreemius-old\includes\class-fs-logger.php:108
actionwp_footerfreemius-old\includes\class-fs-logger.php:110
filterplugins_apifreemius-old\includes\class-fs-plugin-updater.php:83
actionadmin_headfreemius-old\includes\class-fs-plugin-updater.php:106
filterhttp_request_host_is_externalfreemius-old\includes\class-fs-plugin-updater.php:110
filterupgrader_post_installfreemius-old\includes\class-fs-plugin-updater.php:118
filterupgrader_pre_installfreemius-old\includes\class-fs-plugin-updater.php:121
filterupgrader_source_selectionfreemius-old\includes\class-fs-plugin-updater.php:122
filterwp_prepare_themes_for_jsfreemius-old\includes\class-fs-plugin-updater.php:125
actionadmin_footerfreemius-old\includes\class-fs-plugin-updater.php:142
filterpre_set_site_transient_update_pluginsfreemius-old\includes\class-fs-plugin-updater.php:253
filterpre_set_site_transient_update_themesfreemius-old\includes\class-fs-plugin-updater.php:258
filterupgrader_source_selectionfreemius-old\includes\class-fs-plugin-updater.php:1365
filterdebug_bar_panelsfreemius-old\includes\debug\debug-bar-start.php:51
filterdebug_bar_statusesfreemius-old\includes\debug\debug-bar-start.php:52
actioninstall_plugins_pre_plugin-informationfreemius-old\includes\fs-plugin-info-dialog.php:66
filterfs_plugins_apifreemius-old\includes\fs-plugin-info-dialog.php:69
actionadmin_footerfreemius-old\includes\managers\class-fs-admin-notice-manager.php:211
actionnetwork_admin_noticesfreemius-old\includes\managers\class-fs-admin-notice-manager.php:390
actionadmin_noticesfreemius-old\includes\managers\class-fs-admin-notice-manager.php:391
actionadmin_enqueue_scriptsfreemius-old\includes\managers\class-fs-admin-notice-manager.php:394
actionadmin_post_fs_clone_resolutionfreemius-old\includes\managers\class-fs-clone-manager.php:145
actionadmin_footerfreemius-old\includes\managers\class-fs-clone-manager.php:163
actionhttp_api_curlfreemius-old\includes\sdk\FreemiusWordPress.php:444
actionadmin_footerfreemius-old\templates\account.php:93
actionwp_footersite-display-schema\es-admin-site-faq-schema-functions.php:66
actionwp_footersite-display-schema\es-admin-site-local-business-schema-functions.php:124
actionwp_footersite-display-schema\es-admin-site-logo-schema-functions.php:30
actionwp_footersite-display-schema\es-admin-site-sitelinks-schema-functions.php:34
actionwp_footersite-display-schema\es-admin-site-woocommerce-schema-functions.php:69
actioninitsite-display-schema\es-admin-site-woocommerce-schema-functions.php:84
Maintenance & Trust

Easy Schema – Structured Data & Rich Snippets Maintenance & Trust

Maintenance Signals

WordPress version tested6.4.8
Last updatedMar 8, 2024
PHP min version5.6
Downloads8K

Community Trust

Rating100/100
Number of ratings8
Active installs300
Alternatives

Easy Schema – Structured Data & Rich Snippets Alternatives

Schema – All In One Schema Rich Snippets

Schema – All In One Schema Rich Snippets

all-in-one-schemaorg-rich-snippets

A
99

Improve SEO, elevate rankings and Boost CTR. Supports different types of content and works well with Google, Bing, Yahoo, and Facebook.

30K 2 CVEs
Websitescanner Custom Schema

Websitescanner Custom Schema

websitescanner-custom-schema

A
85

Adds custom field to the post & pages editor for custom JSON-ld schema markup also known as structured data.

600 No CVEs
WP COVID-19 Schema

WP COVID-19 Schema

wp-covid-19-schema

A
85

WP COVID-19 Schema plugin adds a schema snippet in the WordPress websites of schools and hospitals to serve the specific purpose of announcements.

10 No CVEs
Schema & Structured Data for WP & AMP

Schema & Structured Data for WP & AMP

schema-and-structured-data-for-wp

A
95

Schema & Structured Data adds Google Rich Snippets markup according to Schema.org guidelines to structure your site for SEO.

100K 10 CVEs
Schema

Schema

schema

A
100

Get the next generation of Schema Structured Data to enhance your WordPress site presentation in Google search results.

40K No CVEs
Developer Profile

Easy Schema – Structured Data & Rich Snippets Developer Profile

Luke

1 plugin · 300 total installs

84
trust score
Avg Security Score
85/100
Avg Patch Time
30 days
View full developer profile
Detection Fingerprints

How We Detect Easy Schema – Structured Data & Rich Snippets

Patterns used to identify this plugin on WordPress sites during automated security audits and web crawling.

Asset Fingerprints

Asset Paths
/wp-content/plugins/easy-schema-structured-data-rich-snippets/admin/css/admin-style.css/wp-content/plugins/easy-schema-structured-data-rich-snippets/admin/javascript/es_admin_javascript.js/wp-content/plugins/easy-schema-structured-data-rich-snippets/admin/javascript/es_admin_settings_ajax.js/wp-content/plugins/easy-schema-structured-data-rich-snippets/admin/javascript/es_admin_local_business_form.js/wp-content/plugins/easy-schema-structured-data-rich-snippets/admin/javascript/es_admin_activated_monitor.js
Script Paths
/wp-content/plugins/easy-schema-structured-data-rich-snippets/admin/javascript/es_admin_javascript.js/wp-content/plugins/easy-schema-structured-data-rich-snippets/admin/javascript/es_admin_settings_ajax.js/wp-content/plugins/easy-schema-structured-data-rich-snippets/admin/javascript/es_admin_local_business_form.js/wp-content/plugins/easy-schema-structured-data-rich-snippets/admin/javascript/es_admin_activated_monitor.js
Version Parameters
easy-schema-structured-data-rich-snippets/admin/css/admin-style.css?ver=easy-schema-structured-data-rich-snippets/admin/javascript/es_admin_javascript.js?ver=easy-schema-structured-data-rich-snippets/admin/javascript/es_admin_settings_ajax.js?ver=easy-schema-structured-data-rich-snippets/admin/javascript/es_admin_local_business_form.js?ver=easy-schema-structured-data-rich-snippets/admin/javascript/es_admin_activated_monitor.js?ver=

HTML / DOM Fingerprints

CSS Classes
easy_schema_admin_dashboardeasy_schema_admin_dashboard_settingseasy_schema_right_options
Data Attributes
id="esAdminSaveSettings"
FAQ

Frequently Asked Questions about Easy Schema – Structured Data & Rich Snippets