Does GT Post Approval have any unpatched vulnerabilities?

No. All known vulnerabilities in GT Post Approval have been patched as of the latest data update. Always keep the plugin updated to the latest version.

Is GT Post Approval compatible with WordPress 2.1?

According to WordPress.org data, GT Post Approval 0.2 has been tested up to WordPress 2.1. Check the plugin's changelog for the latest compatibility information.

How often is GT Post Approval updated?

GT Post Approval was last updated on Unknown. Frequent updates are generally a positive security signal.

What is GT Post Approval's security score?

GT Post Approval has a WP-Safety security score of 100/100. This score is computed from CVE history, patch response time, developer trust signals, and plugin maintenance activity.

GT Post Approval Security & Risk Analysis

wordpress.org/plugins/gt-post-approval

GT Post Approval adds "Approve/Reject" buttons visible just for administrators and editors in the Menage > Posts page.

10 active installs v0.2 PHP + WP 2.0+ Updated Unknown

adminapprovalauthorsglobalwarming-awareness2007posts

A · Safe

CVEs total0

Unpatched0

Last CVENever

Plugin page Download

Safety Verdict

Is GT Post Approval Safe to Use in 2026?

Generally Safe

Score 100/100

GT Post Approval has no known CVEs and is actively maintained. It's a solid choice for most WordPress installations.

No known CVEs

Risk Assessment

The gt-post-approval plugin version 0.2 exhibits a concerning security posture primarily due to its lack of robust data handling practices. While the static analysis shows no direct entry points like AJAX handlers or REST API routes, and a clean vulnerability history with zero known CVEs, the internal code signals reveal significant risks. All SQL queries are executed without prepared statements, which is a major vulnerability that could lead to SQL injection attacks if any of the input used in these queries is user-controlled. Furthermore, a high percentage of output is not properly escaped, increasing the risk of cross-site scripting (XSS) vulnerabilities. The taint analysis also indicates flows with unsanitized paths, suggesting potential for vulnerabilities when data is processed internally. Despite the absence of past vulnerabilities, the current code quality, particularly regarding SQL and output handling, presents a substantial risk that requires immediate attention. The plugin's strengths lie in its limited attack surface and lack of known past exploits, but these are overshadowed by the identified internal code weaknesses.

Key Concerns

All SQL queries are unescaped
No output escaping found
Taint analysis shows unsanitized paths
No nonce checks
No capability checks for critical functions detected

Vulnerabilities

None known

GT Post Approval Security Vulnerabilities

No known vulnerabilities — this is a good sign.

Code Analysis

Analyzed Mar 16, 2026

GT Post Approval Code Analysis

Dangerous Functions

Raw SQL Queries

0 prepared

Unescaped Output

0 escaped

Nonce Checks

Capability Checks

File Operations

External Requests

Bundled Libraries

SQL Query Safety

0% prepared11 total queries

Output Escaping

0% escaped7 total outputs

Data Flows

3 unsanitized

Data Flow Analysis

5 flows3 with unsanitized paths

gt_redirect_after_change (gt-post-approval-03b03.php:158)

Source (user input) Sink (dangerous op) Sanitizer Transform Unsanitized Sanitized

Attack Surface

GT Post Approval Attack Surface

Entry Points0

Unprotected0

WordPress Hooks 15

filtergt_areasgt-post-approval-03b03.php:16

filterposts_wheregt-post-approval-03b03.php:57

filterinitgt-post-approval-03b03.php:105

filtermanage_posts_columnsgt-post-approval-03b03.php:113

filterthe_postsgt-post-approval-03b03.php:116

filtermanage_posts_custom_columngt-post-approval-03b03.php:119

filteradmin_headgt-post-approval-03b03.php:122

filterwp_insert_postgt-post-approval-03b03.php:136

filteradmin_menugt-post-approval-03b03.php:190

filterposts_wheregt-post-approval.php:37

filterinitgt-post-approval.php:54

filtermanage_posts_columnsgt-post-approval.php:62

filterthe_postsgt-post-approval.php:65

filtermanage_posts_custom_columngt-post-approval.php:71

filteradmin_headgt-post-approval.php:74

Maintenance & Trust

GT Post Approval Maintenance & Trust

Maintenance Signals

WordPress version tested2.1

Last updatedUnknown

PHP min version

Downloads10K

Community Trust

Rating80/100

Number of ratings1

Active installs10

Alternatives

GT Post Approval Alternatives

WP Admin UI Customize

wp-admin-ui-customize

Customize the management screen UI.

30K 2 CVEs

LH Archived Post Status

lh-archived-post-status

Allows posts and pages to be archived so you can remove content from the main loop and feed without having to trash it.

4K No CVEs

HiFi (Head Injection, Foot Injection)

hifi

HiFi is a head and foot injection plugin. It allows you to inject code into the head and foot areas of your posts and pages on a per-page basis.

2K No CVEs

Sortable Word Count Reloaded

sortable-word-count-reloaded

100

Adds a sortable column to the posts and pages admin list with the word count of each page/post.

2K No CVEs

Post Category Filter (WP Admin)

admin-category-filter

100

Quickly search and filter categories and taxonomies inside the WordPress admin.

1K No CVEs

Developer Profile

GT Post Approval Developer Profile

WPFraternity

6 plugins · 1K total installs

trust score

Avg Security Score

95/100

Avg Patch Time

30 days

View full developer profile

Detection Fingerprints

How We Detect GT Post Approval

Patterns used to identify this plugin on WordPress sites during automated security audits and web crawling.

Asset Fingerprints

HTML / DOM Fingerprints

CSS Classes

gtaprove

FAQ