WP-Safety

IC Importer – Import posts and pages from google spreadsheet Security & Risk Analysis

wordpress.org/plugins/ic-importer

The most powerful solution for import posts and pages from spreadsheet

10 active installs v1.0.0 PHP 5.4+ WP 4.7+ Updated May 25, 2022
import-pageimport-postimporterpage-importpost-import
85
A · Safe
CVEs total0
Unpatched0
Last CVENever
Plugin page Download
Safety Verdict

Is IC Importer – Import posts and pages from google spreadsheet Safe to Use in 2026?

Generally Safe

Score 85/100

IC Importer – Import posts and pages from google spreadsheet has no known CVEs and is actively maintained. It's a solid choice for most WordPress installations.

No known CVEs Updated 3yr ago
Risk Assessment

The "ic-importer" plugin v1.0.0 exhibits a generally strong security posture based on the static analysis provided. It demonstrates good practices by implementing nonce checks for its AJAX handlers and utilizing prepared statements for all SQL queries. The plugin also shows excellent output escaping, with 95% of its outputs being properly escaped, significantly reducing the risk of XSS vulnerabilities.

However, there are potential concerns. The taint analysis reveals two flows with unsanitized paths, although they are not classified as critical or high severity. This indicates a possibility for vulnerabilities if these unsanitized paths were to interact with sensitive operations or user-supplied input in a way not fully captured by the static analysis. The presence of two file operations, even without specific details on their nature, warrants caution, especially in conjunction with the unsanitized path flows.

The plugin's vulnerability history is clean, with no known CVEs, which is a positive indicator. This suggests the developers have a good track record or have maintained the plugin well. Despite the clean history, the findings from the taint analysis, specifically the unsanitized paths, represent the most significant area of potential risk. The overall conclusion is that the plugin is well-developed with strong security fundamentals, but the taint analysis findings require further investigation or a cautious approach during integration.

Key Concerns

  • Flows with unsanitized paths
  • File operations without explicit detail
Vulnerabilities
None known

IC Importer – Import posts and pages from google spreadsheet Security Vulnerabilities

No known vulnerabilities — this is a good sign.
Code Analysis
Analyzed Mar 17, 2026

IC Importer – Import posts and pages from google spreadsheet Code Analysis

Dangerous Functions
0
Raw SQL Queries
0
0 prepared
Unescaped Output
2
40 escaped
Nonce Checks
2
Capability Checks
1
File Operations
2
External Requests
0
Bundled Libraries
0

Output Escaping

95% escaped42 total outputs
Data Flows
2 unsanitized

Data Flow Analysis

2 flows2 with unsanitized paths
ic_importer_post_import_ajax (inc\Classes\Import.php:170)
Source (user input) Sink (dangerous op) Sanitizer Transform Unsanitized Sanitized
Attack Surface

IC Importer – Import posts and pages from google spreadsheet Attack Surface

Entry Points2
Unprotected0

AJAX Handlers 2

authwp_ajax_ic_importer_file_uploadinc\Classes\Import.php:36
authwp_ajax_ic_importer_post_importinc\Classes\Import.php:37
WordPress Hooks 4
actionplugins_loadedic-importer.php:64
actioninitinc\Classes\Core.php:25
actionadmin_enqueue_scriptsinc\Classes\Core.php:26
actionadmin_menuinc\Classes\Dashboard.php:25
Maintenance & Trust

IC Importer – Import posts and pages from google spreadsheet Maintenance & Trust

Maintenance Signals

WordPress version tested6.0.11
Last updatedMay 25, 2022
PHP min version5.4
Downloads1K

Community Trust

Rating0/100
Number of ratings0
Active installs10
Alternatives

IC Importer – Import posts and pages from google spreadsheet Alternatives

CSV Page Importer

CSV Page Importer

wp-importer

A
100

Create dynamically pages/posts by CSV file within few second.

200 No CVEs
Auto Robot – WP Autoblogging and RSS Feed News Aggregator

Auto Robot – WP Autoblogging and RSS Feed News Aggregator

auto-robot

A
100

Auto blogging and generate WordPress posts automatically from OpenAI ChatGPT, RSS Feed, Instagram, Youtube, Facebook, Twitter, Vimeo, Flickr and etc.

100 No CVEs
WordPress Importer

WordPress Importer

wordpress-importer

A
98

Import posts, pages, comments, custom fields, categories, tags and more from a WordPress export file.

2.0M 1 CVE
Widget Importer & Exporter

Widget Importer & Exporter

widget-importer-exporter

A
100

Import and export your widgets.

200K No CVEs
Import and export users and customers

Import and export users and customers

import-users-from-csv-with-meta

A
93

Import and export users and customers including user meta, roles, and other. Compatible with many plugins. Do it from the front end or using cron.

80K 20 CVEs
Developer Profile

IC Importer – Import posts and pages from google spreadsheet Developer Profile

ITclan BD

2 plugins · 10 total installs

89
trust score
Avg Security Score
93/100
Avg Patch Time
30 days
View full developer profile
Detection Fingerprints

How We Detect IC Importer – Import posts and pages from google spreadsheet

Patterns used to identify this plugin on WordPress sites during automated security audits and web crawling.

Asset Fingerprints

Asset Paths
/wp-content/plugins/ic-importer/admin/css/admin.css/wp-content/plugins/ic-importer/admin/css/bootstrap.min.css/wp-content/plugins/ic-importer/admin/js/bootstrap.min.js/wp-content/plugins/ic-importer/admin/js/admin.js
Script Paths
/wp-content/plugins/ic-importer/admin/js/bootstrap.min.js/wp-content/plugins/ic-importer/admin/js/admin.js
Version Parameters
ic-importer/admin/css/admin.css?ver=ic-importer/admin/css/bootstrap.min.css?ver=ic-importer/admin/js/bootstrap.min.js?ver=ic-importer/admin/js/admin.js?ver=

HTML / DOM Fingerprints

CSS Classes
ic-importer-step-titleic-post-field
Data Attributes
data-post-typedata-noncedata-action
JS Globals
ic_importer_ajax_object
FAQ

Frequently Asked Questions about IC Importer – Import posts and pages from google spreadsheet