Does Iris Translate have any unpatched vulnerabilities?

No. All known vulnerabilities in Iris Translate have been patched as of the latest data update. Always keep the plugin updated to the latest version.

Is Iris Translate compatible with WordPress 6.9.4?

According to WordPress.org data, Iris Translate 1.0.0 has been tested up to WordPress 6.9.4. Check the plugin's changelog for the latest compatibility information.

Is Iris Translate compatible with PHP 7.0+?

Iris Translate requires PHP 7.0 or higher. Most modern WordPress hosts run PHP 8.1 or 8.2. If you are on an older PHP version, consider upgrading before installing this plugin.

How often is Iris Translate updated?

Iris Translate was last updated on Unknown. Frequent updates are generally a positive security signal.

What is Iris Translate's security score?

Iris Translate has a WP-Safety security score of 100/100. This score is computed from CVE history, patch response time, developer trust signals, and plugin maintenance activity.

Iris Translate Security & Risk Analysis

wordpress.org/plugins/iris-translate

Translate your WordPress site with free automatic translation or SEO-friendly Google Cloud API translation.

0 active installs v1.0.0 PHP 7.0+ WP 6.9+ Updated Unknown

google-translatemultilingualseotranslatetranslation

A · Safe

CVEs total0

Unpatched0

Last CVENever

Plugin page Download

Safety Verdict

Is Iris Translate Safe to Use in 2026?

Generally Safe

Score 100/100

Iris Translate has no known CVEs and is actively maintained. It's a solid choice for most WordPress installations.

No known CVEs

Risk Assessment

The "iris-translate" plugin v1.0.0 demonstrates a generally strong security posture. The static analysis reveals a significant number of security checks are in place, with a high percentage of SQL queries using prepared statements and nearly all output being properly escaped. The absence of dangerous functions, file operations, and external HTTP requests, coupled with a robust use of nonce and capability checks, are positive indicators. The plugin also has a clean vulnerability history, with no known CVEs, which further suggests good development practices.

Despite these strengths, there are some areas that warrant attention. While the attack surface is not exceptionally large, the presence of 10 AJAX handlers, even if seemingly protected by default, should always be scrutinized for potential logic flaws or permission bypasses if their security isn't rigorously validated. The fact that 100% of AJAX handlers are reported as 'without auth checks' is a significant concern, implying that the reported 'Unprotected: 0' is based on assumptions that may not hold under adversarial testing. The limited scope of taint analysis (2 flows analyzed) means that potential unsanitized paths might have been missed. Therefore, while the plugin appears to be in good shape based on the provided data, diligent manual review of AJAX handler security is recommended to confirm the effectiveness of their authentication and authorization mechanisms.

Key Concerns

AJAX handlers without explicit auth checks
Limited taint analysis scope

Vulnerabilities

None known

Iris Translate Security Vulnerabilities

No known vulnerabilities — this is a good sign.

Code Analysis

Analyzed Mar 17, 2026

Iris Translate Code Analysis

Dangerous Functions

Raw SQL Queries

11 prepared

Unescaped Output

292 escaped

Nonce Checks

Capability Checks

File Operations

External Requests

Bundled Libraries

SQL Query Safety

69% prepared16 total queries

Output Escaping

99% escaped294 total outputs

Data Flows

All sanitized

Data Flow Analysis

2 flows

render_urls_page (iris-translate.php:3899)

Source (user input) Sink (dangerous op) Sanitizer Transform Unsanitized Sanitized

Attack Surface

Iris Translate Attack Surface

Entry Points11

Unprotected0

AJAX Handlers 10

authwp_ajax_iris_save_url_translationsiris-translate.php:314

authwp_ajax_iris_save_single_url_translationiris-translate.php:315

authwp_ajax_iris_delete_url_translationsiris-translate.php:316

authwp_ajax_iris_get_translation_datairis-translate.php:317

authwp_ajax_iris_clear_translation_cacheiris-translate.php:318

authwp_ajax_iris_translate_urls_apiiris-translate.php:319

authwp_ajax_iris_translate_preview_widgetiris-translate.php:322

authwp_ajax_iris_save_custom_translationiris-translate.php:325

authwp_ajax_iris_delete_custom_translationiris-translate.php:326

authwp_ajax_iris_get_custom_translationsiris-translate.php:327

Shortcodes 1

[iris_translate] iris-translate.php:360

WordPress Hooks 24

actionadmin_menuiris-translate.php:309

actionadmin_initiris-translate.php:310

actionadmin_enqueue_scriptsiris-translate.php:311

actionadmin_bar_menuiris-translate.php:330

actionadmin_initiris-translate.php:333

actionwp_enqueue_scriptsiris-translate.php:336

actionwp_enqueue_scriptsiris-translate.php:337

actiontemplate_redirectiris-translate.php:347

actionwp_footeriris-translate.php:349

actionwp_enqueue_scriptsiris-translate.php:352

filterlanguage_attributesiris-translate.php:353

actioninitiris-translate.php:354

actionwp_headiris-translate.php:355

actionwp_footeriris-translate.php:356

actionwidgets_initiris-translate.php:363

actioninitiris-translate.php:366

filterquery_varsiris-translate.php:367

actiontemplate_redirectiris-translate.php:368

actionwp_headiris-translate.php:369

actiontemplate_redirectiris-translate.php:374

filterwp_redirectiris-translate.php:377

actioninitiris-translate.php:380

filterwp_template_enhancement_output_bufferiris-translate.php:3042

actionplugins_loadediris-translate.php:4882

Maintenance & Trust

Iris Translate Maintenance & Trust

Maintenance Signals

WordPress version tested6.9.4

Last updatedUnknown

PHP min version7.0

Downloads101

Community Trust

Rating0/100

Number of ratings0

Active installs0

Alternatives

Iris Translate Alternatives

LocoAI – Auto Translate For Loco Translate

automatic-translator-addon-for-loco-translate

100

LocoAI - Auto Translate For Loco Translate is a powerful tool for developers looking to quickly translate their WordPress plugins and themes.

80K No CVEs

Prisna GWT – Google Website Translator

google-website-translator

Easily translate your WordPress site into 100+ languages to make it multilingual. A simple and complete multilingual solution for WordPress.

8K 3 CVEs

Advanced Google Translate

advanced-google-translate

Advanced Google Translate plugin.

300 No CVEs

Clonable – Translate Woocommerce / WordPress website. Multilingual in 5 minutes.

clonable

100

Seamlessly translate and maintain your multilingual websites. Speed up and simplify your internationalisation with Clonable.

300 No CVEs

Translate3K – Browser Language Switcher

translate3k-browser-language-switcher

100

Adds a language selector for automatic page translation using Google Translate.

0 No CVEs

Developer Profile

Iris Translate Developer Profile

Quite Nice Stuff

2 plugins · 40 total installs

trust score

Avg Security Score

100/100

Avg Patch Time

30 days

View full developer profile

Detection Fingerprints

How We Detect Iris Translate

Patterns used to identify this plugin on WordPress sites during automated security audits and web crawling.

Asset Fingerprints

Asset Paths

/wp-content/plugins/iris-translate/assets/css/iris-translate-admin.css/wp-content/plugins/iris-translate/assets/js/iris-translate-admin.js/wp-content/plugins/iris-translate/assets/css/iris-translate-frontend.css/wp-content/plugins/iris-translate/assets/js/iris-translate-frontend.js

Script Paths

/wp-content/plugins/iris-translate/assets/js/iris-translate-admin.js/wp-content/plugins/iris-translate/assets/js/iris-translate-frontend.js

Version Parameters

iris-translate/assets/css/iris-translate-admin.css?ver=iris-translate/assets/js/iris-translate-admin.js?ver=iris-translate/assets/css/iris-translate-frontend.css?ver=iris-translate/assets/js/iris-translate-frontend.js?ver=

HTML / DOM Fingerprints

CSS Classes

iris_translate_wrapper

Data Attributes

data-original-language-codedata-target-language-code

JS Globals

IrisTranslate

FAQ