Does Formategory have any unpatched vulnerabilities?

No. All known vulnerabilities in Formategory have been patched as of the latest data update. Always keep the plugin updated to the latest version.

Is Formategory compatible with WordPress 6.7.5?

According to WordPress.org data, Formategory 3.2 has been tested up to WordPress 6.7.5. Check the plugin's changelog for the latest compatibility information.

How often is Formategory updated?

Formategory was last updated on Apr 1, 2025. Frequent updates are generally a positive security signal.

What is Formategory's security score?

Formategory has a WP-Safety security score of 92/100. This score is computed from CVE history, patch response time, developer trust signals, and plugin maintenance activity.

Formategory Security & Risk Analysis

wordpress.org/plugins/formategory

Formats posts based on their category.

10 active installs v3.2 PHP + WP 3.6+ Updated Apr 1, 2025

categorycustomizationtemplate

A · Safe

CVEs total0

Unpatched0

Last CVENever

Plugin page Download

Safety Verdict

Is Formategory Safe to Use in 2026?

Generally Safe

Score 92/100

Formategory has no known CVEs and is actively maintained. It's a solid choice for most WordPress installations.

No known CVEs Updated 1yr ago

Risk Assessment

The plugin 'formategory' v3.2 exhibits a strong security posture based on the provided static analysis. The absence of any detected dangerous functions, raw SQL queries, unescaped output, file operations, or external HTTP requests is commendable. Furthermore, the lack of any identified taint flows, especially those with unsanitized paths or critical/high severity, suggests a robust approach to handling data within the plugin. The vulnerability history further reinforces this positive outlook, with zero known CVEs recorded, indicating a history of secure development or timely patching.

While the static analysis reveals a clean bill of health, it's important to note the complete absence of certain security mechanisms like nonce checks, capability checks, and AJAX handlers/REST API routes. While the current code might not require them due to its limited functionality, it represents a potential future blind spot if the plugin's attack surface expands. The total entry points being zero is excellent, but it also means there are no built-in security checks to assess in this version. Overall, the plugin appears secure for its current functionality, but future development should consider incorporating standard WordPress security best practices as the attack surface grows.

Key Concerns

No nonce checks detected
No capability checks detected

Vulnerabilities

None known

Formategory Security Vulnerabilities

No known vulnerabilities — this is a good sign.

Code Analysis

Analyzed Mar 17, 2026

Formategory Code Analysis

Dangerous Functions

Raw SQL Queries

0 prepared

Unescaped Output

0 escaped

Nonce Checks

Capability Checks

File Operations

External Requests

Bundled Libraries

Attack Surface

Formategory Attack Surface

Entry Points0

Unprotected0

WordPress Hooks 7

filterthe_titleformategory.php:57

actionadmin_enqueue_scriptsformategory.php:59

actionadd_meta_boxesformategory.php:61

actioninitformategory.php:166

actionadmin_initformategory.php:167

filterthe_contentformategory.php:169

filterplugin_action_linksformategory.php:170

Maintenance & Trust

Formategory Maintenance & Trust

Maintenance Signals

WordPress version tested6.7.5

Last updatedApr 1, 2025

PHP min version

Downloads6K

Community Trust

Rating100/100

Number of ratings1

Active installs10

Alternatives

Formategory Alternatives

Custom Category Templates

custom-category-templates

Define custom templates for category views.

3K No CVEs

Custom Category Template

custom-category-template

This plugin lets you select a specific template for a category, just like pages

2K No CVEs

Category Template Hierarchy

category-template-hierarchy

Adds parent-category.php, child-category.php, and child-category-{slug|id} templates to the hierarchy and conditional tags to match.

100 No CVEs

Count Posts in a Category, Tag, or Custom Taxonomy

count-posts-in-a-category

Adds a custom shortcode that returns the number of posts in a category, tag, or custom taxonomy. Accepts a slug (default), ID, or name as input and wo …

100 No CVEs

Display Event Location for The Events Calendar

display-event-locations-tec

100

This plugin works with The Events Calendar by Modern Tribe. It adds an event's location information to the tooltip on the monthly calendar view.

100 No CVEs

Developer Profile

Formategory Developer Profile

Christopher Finke

3 plugins · 320 total installs

trust score

Avg Security Score

87/100

Avg Patch Time

30 days

View full developer profile

Detection Fingerprints

How We Detect Formategory

Patterns used to identify this plugin on WordPress sites during automated security audits and web crawling.

Asset Fingerprints

Asset Paths

/wp-content/plugins/formategory/js/admin-edit.js/wp-content/plugins/formategory/css/admin.css

Script Paths

/wp-content/plugins/formategory/js/admin-edit.js

Version Parameters

formategory/js/admin-edit.js?ver=formategory/css/admin.css?ver=

HTML / DOM Fingerprints

CSS Classes

formategory-placeholder

Data Attributes

data-placeholder

FAQ

Formategory Security & Risk Analysis

Is Formategory Safe to Use in 2026?

Generally Safe

Key Concerns

Formategory Security Vulnerabilities

Formategory Code Analysis

Formategory Attack Surface

Formategory Maintenance & Trust

Maintenance Signals

Community Trust

Formategory Alternatives

Custom Category Templates

Custom Category Template

Category Template Hierarchy

Count Posts in a Category, Tag, or Custom Taxonomy

Display Event Location for The Events Calendar

Formategory Developer Profile

How We Detect Formategory

Asset Fingerprints

HTML / DOM Fingerprints

Frequently Asked Questions about Formategory