Does Force Post Title have any unpatched vulnerabilities?

No. All known vulnerabilities in Force Post Title have been patched as of the latest data update. Always keep the plugin updated to the latest version.

Is Force Post Title compatible with WordPress 4.1.42?

According to WordPress.org data, Force Post Title 1.1 has been tested up to WordPress 4.1.42. Check the plugin's changelog for the latest compatibility information.

How often is Force Post Title updated?

Force Post Title was last updated on Jan 23, 2015. Frequent updates are generally a positive security signal.

What is Force Post Title's security score?

Force Post Title has a WP-Safety security score of 85/100. This score is computed from CVE history, patch response time, developer trust signals, and plugin maintenance activity.

Force Post Title Security & Risk Analysis

wordpress.org/plugins/force-post-title

This is simple plugin which forces the users to write POST title in Add New Post page.

100 active installs v1.1 PHP + WP 3.x+ Updated Jan 23, 2015

postpublishrequiretitlewithout

A · Safe

CVEs total0

Unpatched0

Last CVENever

Plugin page Download

Safety Verdict

Is Force Post Title Safe to Use in 2026?

Generally Safe

Score 85/100

Force Post Title has no known CVEs and is actively maintained. It's a solid choice for most WordPress installations.

No known CVEs Updated 11yr ago

Risk Assessment

The 'force-post-title' v1.1 plugin exhibits a strong security posture based on the provided static analysis. The absence of any AJAX handlers, REST API routes, shortcodes, or cron events, and the complete lack of dangerous functions, raw SQL queries, unescaped output, file operations, external HTTP requests, or identifiable taint flows significantly limits its attack surface. The plugin adheres to good development practices by ensuring that all discovered SQL queries are properly prepared and all output is correctly escaped. The vulnerability history is also clean, with no recorded CVEs, indicating a history of secure development or minimal exposure. However, the complete absence of nonces and capability checks, while not directly exploitable given the zero attack surface, represents a potential weakness if functionality were to be added in the future without proper security controls. Overall, this plugin appears very secure for its current functionality, but a lack of built-in security mechanisms for potential future expansion could be a minor concern.

Key Concerns

Missing nonce checks
Missing capability checks

Vulnerabilities

None known

Force Post Title Security Vulnerabilities

No known vulnerabilities — this is a good sign.

Code Analysis

Analyzed Mar 16, 2026

Force Post Title Code Analysis

Dangerous Functions

Raw SQL Queries

0 prepared

Unescaped Output

0 escaped

Nonce Checks

Capability Checks

File Operations

External Requests

Bundled Libraries

Attack Surface

Force Post Title Attack Surface

Entry Points0

Unprotected0

WordPress Hooks 2

actionadmin_initforce_post_title.php:34

actionedit_form_advancedforce_post_title.php:35

Maintenance & Trust

Force Post Title Maintenance & Trust

Maintenance Signals

WordPress version tested4.1.42

Last updatedJan 23, 2015

PHP min version

Downloads5K

Community Trust

Rating100/100

Number of ratings4

Active installs100

Alternatives

Force Post Title Alternatives

Force Post Category Selection

force-post-category-selection

This is simple plugin which forces the users to select atleast one category from the list while publishing a new post.

100 No CVEs

Date Published Shortcode

date-published-shortcode

Automatically puts in the date that the post was published, using the shortcode [post_published].

500 No CVEs

Require Post Tags

require-post-tags

Require users to add at least one post tag before saving a draft, updating a post, or publishing a post. This applies to normal posts and may not be …

40 No CVEs