WP-Safety

FreshRank – Instant Feedback for Better Content Security & Risk Analysis

wordpress.org/plugins/freshrank-ai

AI-powered content analysis for SEO & GEO optimization. Analyze your content for search engines AND AI platforms like ChatGPT and Claude.

20 active installs v1.0.1 PHP 7.4+ WP 5.0+ Updated Unknown
content-analysiscontent-optimizationcontent-updatesgeoseo
100
A · Safe
CVEs total0
Unpatched0
Last CVENever
Plugin page Download
Safety Verdict

Is FreshRank – Instant Feedback for Better Content Safe to Use in 2026?

Generally Safe

Score 100/100

FreshRank – Instant Feedback for Better Content has no known CVEs and is actively maintained. It's a solid choice for most WordPress installations.

No known CVEs
Risk Assessment

The "freshrank-ai" v1.0.1 plugin presents a significant security risk due to a large number of unprotected AJAX handlers, which form its entire attack surface. While the code shows good practices in other areas, such as a high percentage of prepared SQL statements and properly escaped output, the lack of authentication on all entry points is a critical weakness. The taint analysis revealing 10 high-severity flows with unsanitized paths further exacerbates this concern, suggesting potential for injection vulnerabilities if these flows are reachable by unauthenticated users. The absence of any known past vulnerabilities is a positive sign, indicating the developers may have been fortunate or that the plugin hasn't been a significant target. However, the current state of unauthenticated AJAX endpoints, combined with high-severity taint flows, means this plugin should be considered highly vulnerable. It is crucial to address the unprotected AJAX handlers and investigate the high-severity taint flows immediately. The plugin's strengths in other areas are overshadowed by this fundamental security flaw.

Key Concerns

  • 19 AJAX handlers without auth checks
  • 10 High severity taint flows with unsanitized paths
  • 18 Flows with unsanitized paths
  • 6 Nonce checks (low coverage)
Vulnerabilities
None known

FreshRank – Instant Feedback for Better Content Security Vulnerabilities

No known vulnerabilities — this is a good sign.
Code Analysis
Analyzed Mar 16, 2026

FreshRank – Instant Feedback for Better Content Code Analysis

Dangerous Functions
0
Raw SQL Queries
30
118 prepared
Unescaped Output
75
570 escaped
Nonce Checks
6
Capability Checks
10
File Operations
0
External Requests
3
Bundled Libraries
0

SQL Query Safety

80% prepared148 total queries

Output Escaping

88% escaped645 total outputs
Data Flows
18 unsanitized

Data Flow Analysis

21 flows18 with unsanitized paths
render_initial_state (includes\class-dashboard.php:988)
Source (user input) Sink (dangerous op) Sanitizer Transform Unsanitized Sanitized
Attack Surface
19 unprotected

FreshRank – Instant Feedback for Better Content Attack Surface

Entry Points19
Unprotected19

AJAX Handlers 19

authwp_ajax_freshrank_analyze_articlefreshrank-ai.php:408
authwp_ajax_freshrank_check_analysis_statusfreshrank-ai.php:409
authwp_ajax_freshrank_analyze_bulkfreshrank-ai.php:410
authwp_ajax_freshrank_reorder_articlesfreshrank-ai.php:411
authwp_ajax_freshrank_dismiss_itemfreshrank-ai.php:413
authwp_ajax_freshrank_restore_itemfreshrank-ai.php:414
authwp_ajax_freshrank_set_view_preferencefreshrank-ai.php:415
authwp_ajax_freshrank_update_articlefreshrank-ai.php:417
authwp_ajax_freshrank_check_draft_statusfreshrank-ai.php:418
authwp_ajax_freshrank_update_bulkfreshrank-ai.php:419
authwp_ajax_freshrank_approve_draftfreshrank-ai.php:420
authwp_ajax_freshrank_approve_revisionfreshrank-ai.php:421
authwp_ajax_freshrank_reject_draftfreshrank-ai.php:422
authwp_ajax_freshrank_reject_revisionfreshrank-ai.php:423
authwp_ajax_freshrank_get_draft_difffreshrank-ai.php:424
authwp_ajax_freshrank_test_openai_connectionfreshrank-ai.php:426
authwp_ajax_freshrank_dismiss_api_noticefreshrank-ai.php:427
authwp_ajax_freshrank_delete_articlefreshrank-ai.php:430
authwp_ajax_freshrank_delete_bulkfreshrank-ai.php:431
WordPress Hooks 18
actionadmin_initfreshrank-ai.php:26
actionadmin_noticesfreshrank-ai.php:36
actioninitfreshrank-ai.php:255
filterfreshrank_ai_http_request_sslverifyfreshrank-ai.php:264
actionadmin_menuincludes\class-dashboard.php:34
actionadmin_enqueue_scriptsincludes\class-dashboard.php:35
actionadmin_initincludes\class-dashboard.php:36
actionadmin_initincludes\class-dashboard.php:37
actionadmin_initincludes\class-database.php:41
actionadmin_initincludes\class-database.php:44
actionadmin_initincludes\class-database.php:47
actionadmin_initincludes\class-database.php:50
actionadmin_initincludes\class-settings.php:35
actionadmin_post_freshrank_save_settingsincludes\class-settings.php:36
filterwp_insert_post_dataincludes\content-updater\class-draft-generator.php:180
filterwp_insert_post_dataincludes\content-updater\class-draft-generator.php:217
actionfreshrank_after_analysisincludes\dashboard\class-dashboard-statistics.php:29
actionfreshrank_after_updateincludes\dashboard\class-dashboard-statistics.php:30
Maintenance & Trust

FreshRank – Instant Feedback for Better Content Maintenance & Trust

Maintenance Signals

WordPress version tested6.9.4
Last updatedUnknown
PHP min version7.4
Downloads222

Community Trust

Rating0/100
Number of ratings0
Active installs20
Alternatives

FreshRank – Instant Feedback for Better Content Alternatives

Blogpatcher SEO

Blogpatcher SEO

blogpatcher-seo

A
100

Blogpatcher SEO: The #1 WordPress SEO and content optimization plugin. Make sure your pages and post have optimized content and follow all SEO best pr …

0 No CVEs
Hipa.ai

Hipa.ai

hipa-ai

A
100

Refresh your blog posts on autopilot with intelligent, in-depth updates.

0 No CVEs
Yoast SEO – Advanced SEO with real-time guidance and built-in AI

Yoast SEO – Advanced SEO with real-time guidance and built-in AI

wordpress-seo

A
89

Improve your SEO with real-time feedback, schema, and clear guidance. Upgrade for AI tools, Google Docs integration, and 24/7 support, no hidden fees.

10.0M 17 CVEs
BoldGrid Easy SEO – Simple and Effective SEO

BoldGrid Easy SEO – Simple and Effective SEO

boldgrid-easy-seo

A
99

Easy SEO helps you easily create keyword rich content and rank higher in the search engines.

50K 2 CVEs
Semrush SEO Writing Assistant

Semrush SEO Writing Assistant

semrush-seo-writing-assistant

A
100

The Semrush SEO Writing Assistant provides instant recommendations for content optimization based on the best-performing articles in Google's top 10.

10K No CVEs
Developer Profile

FreshRank – Instant Feedback for Better Content Developer Profile

Themeisle

37 plugins · 2.2M total installs

76
trust score
Avg Security Score
96/100
Avg Patch Time
420 days
View full developer profile
Detection Fingerprints

How We Detect FreshRank – Instant Feedback for Better Content

Patterns used to identify this plugin on WordPress sites during automated security audits and web crawling.

Asset Fingerprints

Asset Paths
/wp-content/plugins/freshrank-ai/assets/css/main.css/wp-content/plugins/freshrank-ai/assets/js/main.js/wp-content/plugins/freshrank-ai/assets/css/frontend.css/wp-content/plugins/freshrank-ai/assets/js/frontend.js
Script Paths
/wp-content/plugins/freshrank-ai/assets/js/main.js/wp-content/plugins/freshrank-ai/assets/js/frontend.js
Version Parameters
freshrank-ai/assets/css/main.css?ver=freshrank-ai/assets/js/main.js?ver=freshrank-ai/assets/css/frontend.css?ver=freshrank-ai/assets/js/frontend.js?ver=

HTML / DOM Fingerprints

CSS Classes
freshrank-ai-admin-wrapperfreshrank-ai-settings-section
HTML Comments
<!-- FreshRank AI Custom Instructions --><!-- FreshRank AI Settings --><!-- FreshRank AI White-Label Settings --><!-- FreshRank AI Debug Settings -->+1 more
Data Attributes
data-freshrank-noncedata-freshrank-action
JS Globals
freshrank_vars
REST Endpoints
/wp-json/freshrank/v1/settings/wp-json/freshrank/v1/save-settings/wp-json/freshrank/v1/save-white-label/wp-json/freshrank/v1/save-debug
FAQ

Frequently Asked Questions about FreshRank – Instant Feedback for Better Content