WP-Safety

Kads SEO Security & Risk Analysis

wordpress.org/plugins/kads-seo

SEO optimized and works with any WordPress theme. Full data retrieved automatically. All tags are intelligently integrated based on the available data …

10 active installs v1.3.7 PHP 5.5+ WP 4.2+ Updated Dec 5, 2019
image-seopagesearch-engine-optimizationseosocial
85
A · Safe
CVEs total0
Unpatched0
Last CVENever
Plugin page Download
Safety Verdict

Is Kads SEO Safe to Use in 2026?

Generally Safe

Score 85/100

Kads SEO has no known CVEs and is actively maintained. It's a solid choice for most WordPress installations.

No known CVEs Updated 6yr ago
Risk Assessment

The kads-seo v1.3.7 plugin demonstrates a generally good security posture with a small attack surface consisting of two AJAX handlers. The plugin utilizes nonce and capability checks for both of these entry points, which is a positive security practice. However, the code analysis reveals a significant concern regarding output escaping, with only 54% of outputs being properly escaped. This suggests a potential for Cross-Site Scripting (XSS) vulnerabilities if user-supplied data is not handled carefully before being displayed. Furthermore, the taint analysis identified two flows with unsanitized paths, which could lead to path traversal or other file system-related vulnerabilities if not addressed.

The plugin has no recorded vulnerability history, which is a strong indicator of its past security performance. This lack of historical vulnerabilities, combined with the presence of authentication checks on its entry points, suggests that the developers are making an effort to write secure code. However, the identified issues with output escaping and unsanitized paths in the static analysis are critical areas that need immediate attention to maintain this positive security record and prevent the introduction of new vulnerabilities.

Key Concerns

  • Unsanitized paths in taint analysis
  • Low percentage of properly escaped output
Vulnerabilities
None known

Kads SEO Security Vulnerabilities

No known vulnerabilities — this is a good sign.
Code Analysis
Analyzed Mar 17, 2026

Kads SEO Code Analysis

Dangerous Functions
0
Raw SQL Queries
2
7 prepared
Unescaped Output
170
202 escaped
Nonce Checks
2
Capability Checks
2
File Operations
1
External Requests
0
Bundled Libraries
0

SQL Query Safety

78% prepared9 total queries

Output Escaping

54% escaped372 total outputs
Data Flows
2 unsanitized

Data Flow Analysis

3 flows2 with unsanitized paths
save_general_settings (includes\class-kseo-seo-settings.php:157)
Source (user input) Sink (dangerous op) Sanitizer Transform Unsanitized Sanitized
Attack Surface

Kads SEO Attack Surface

Entry Points2
Unprotected0

AJAX Handlers 2

authwp_ajax_kseo_add_data_fileincludes\kseo-functions.php:73
noprivwp_ajax_kseo_add_data_fileincludes\kseo-functions.php:74
WordPress Hooks 12
actionadmin_initincludes\class-kseo-seo-settings.php:139
actionadmin_menuincludes\class-kseo-seo-settings.php:140
actionadmin_print_scriptsincludes\class-kseo-seo-settings.php:194
actionadd_meta_boxesincludes\class-kseo-seo-settings.php:196
actionsave_postincludes\class-kseo-seo-settings.php:197
filterpre_get_document_titleincludes\class-kseo-seo.php:57
actionwp_headincludes\class-kseo-seo.php:62
actioninitincludes\class-kseo-seo.php:63
actionadmin_menuincludes\class-kseo-welcome.php:23
actionadmin_initincludes\class-kseo-welcome.php:24
actionadmin_menuincludes\class-kseo-welcome.php:25
filterupload_dirincludes\kseo-functions.php:52
Maintenance & Trust

Kads SEO Maintenance & Trust

Maintenance Signals

WordPress version tested5.2.24
Last updatedDec 5, 2019
PHP min version5.5
Downloads2K

Community Trust

Rating100/100
Number of ratings2
Active installs10
Alternatives

Kads SEO Alternatives

On Page SEO + Social Live Chat

On Page SEO + Social Live Chat

ops-robots-txt

A
99

Improve your Website Indexing: On-Page SEO is the No #1 Plugin for allowing website crawling by all Search Engines. As we mentioned at the outset, a l …

200 2 CVEs
MetaTag

MetaTag

metatag

A
85

MetaTag is a simple to use WordPress plugin to enhance on page SEO of your website.

600 No CVEs
SEO Stats Widget

SEO Stats Widget

seo-stats-widget

A
85

Display SEO Statistics of blog

80 No CVEs
LiteSpeed Cache

LiteSpeed Cache

litespeed-cache

B
82

All-in-one unbeatable acceleration & PageSpeed improvement: caching, image/CSS/JS optimization...

7.0M 18 CVEs
SpeedyCache – Cache, Optimization, Performance

SpeedyCache – Cache, Optimization, Performance

speedycache

A
97

SpeedyCache is a WordPress cache plugin that helps you improve performance of your WordPress site by caching, minifying, and compressing your website.

600K 4 CVEs
Developer Profile

Kads SEO Developer Profile

huynhduy1985

3 plugins · 10 total installs

87
trust score
Avg Security Score
90/100
Avg Patch Time
30 days
View full developer profile
Detection Fingerprints

How We Detect Kads SEO

Patterns used to identify this plugin on WordPress sites during automated security audits and web crawling.

Asset Fingerprints

Asset Paths
/wp-content/plugins/kads-seo/assets/css/style.css/wp-content/plugins/kads-seo/assets/js/kads-seo.js
Script Paths
/wp-content/plugins/kads-seo/assets/js/kads-seo.js
Version Parameters
kads-seo/assets/css/style.css?ver=kads-seo/assets/js/kads-seo.js?ver=

HTML / DOM Fingerprints

FAQ

Frequently Asked Questions about Kads SEO