Does Kainoto Simple RSS Importer have any unpatched vulnerabilities?

No published vulnerabilities and no findings under coordinated disclosure as of the latest data update. Always keep the plugin updated to the latest version.

Is Kainoto Simple RSS Importer compatible with WordPress 6.8.5?

According to WordPress.org data, Kainoto Simple RSS Importer 1.7 has been tested up to WordPress 6.8.5. Check the plugin's changelog for the latest compatibility information.

How often is Kainoto Simple RSS Importer updated?

Kainoto Simple RSS Importer was last updated on Oct 6, 2025. Frequent updates are generally a positive security signal.

What is Kainoto Simple RSS Importer's security score?

Kainoto Simple RSS Importer has a WP-Safety security score of 100/100. This score is computed from CVE history, patch response time, developer trust signals, and plugin maintenance activity.

Kainoto Simple RSS Importer Security & Risk Analysis

wordpress.org/plugins/kainoto-simple-rss-importer

A simple and secure plugin to import posts from an RSS feed file with full date, category, and content cleaning support.

0 active installs v1.7 PHP + WP 5.0+ Updated Oct 6, 2025

A · Safe

CVEs total0

Unpatched0

Last CVENever

Download

Safety Verdict

Is Kainoto Simple RSS Importer Safe to Use in 2026?

Generally Safe

Score 100/100

Kainoto Simple RSS Importer has no known CVEs and is actively maintained. It's a solid choice for most WordPress installations.

No known CVEs Updated 7mo ago

Risk Assessment

The kainoto-simple-rss-importer plugin v1.7 demonstrates a strong security posture based on the provided static analysis and vulnerability history. The absence of any recorded CVEs and the comprehensive use of prepared statements for SQL queries, along with proper output escaping and nonce/capability checks, indicate adherence to secure coding practices. The attack surface is remarkably small, with no identified AJAX handlers, REST API routes, shortcodes, or cron events, further minimizing potential entry points for attackers. The taint analysis also shows no issues with unsanitized paths, reinforcing the plugin's current security. The plugin appears well-maintained and has a history free of known vulnerabilities.

Vulnerabilities

None known

Kainoto Simple RSS Importer Security Vulnerabilities

No known vulnerabilities — this is a good sign.

Version History

Kainoto Simple RSS Importer Release Timeline

v1.7Current

Code Analysis

Analyzed Mar 17, 2026

Kainoto Simple RSS Importer Code Analysis

Dangerous Functions

Raw SQL Queries

0 prepared

Unescaped Output

9 escaped

Nonce Checks

Capability Checks

File Operations

External Requests

Bundled Libraries

Output Escaping

100% escaped9 total outputs

Data Flows · Security

All sanitized

Data Flow Analysis

2 flows

ksri_handle_file_upload (kainoto-simple-rss-importer.php:104)

Source (user input) Sink (dangerous op) Sanitizer Transform Unsanitized Sanitized

Attack Surface

Kainoto Simple RSS Importer Attack Surface

Entry Points0

Unprotected0

WordPress Hooks 2

actionadmin_menukainoto-simple-rss-importer.php:23

actionadmin_initkainoto-simple-rss-importer.php:220

Maintenance & Trust

Kainoto Simple RSS Importer Maintenance & Trust

Maintenance Signals

WordPress version tested6.8.5

Last updatedOct 6, 2025

PHP min version

Downloads180

Community Trust

Rating0/100

Number of ratings0

Active installs0

Alternatives

Kainoto Simple RSS Importer Alternatives

No alternatives data available yet.

Developer Profile

Kainoto Simple RSS Importer Developer Profile

Dušan Vrban

2 plugins · 30 total installs

trust score

Avg Security Score

100/100

Avg Patch Time

30 days

View full developer profile

Detection Fingerprints

How We Detect Kainoto Simple RSS Importer

Patterns used to identify this plugin on WordPress sites during automated security audits and web crawling.

Asset Fingerprints

Asset Paths

/wp-content/plugins/kainoto-simple-rss-importer/css/style.css

Script Paths

/wp-content/plugins/kainoto-simple-rss-importer/js/ksri-scripts.js

Version Parameters

kainoto-simple-rss-importer/css/style.css?ver=kainoto-simple-rss-importer/js/ksri-scripts.js?ver=

HTML / DOM Fingerprints

CSS Classes

wrapform-tablescreen-reader-textdescriptionregular-textnotice-error

HTML Comments

<!-- Risk of Content Modification: This plugin directly interacts with your website's database. If you use the "Overwrite existing posts" option, it will permanently replace content. Always back up your website before running an import. The author is not responsible for any unintended content changes or data loss. -->

<!-- No Guaranteed Support: This plugin is provided "as-is" without any warranties. We do not promise to provide support or release updates. However, we will do our best to help with issues when time and resources allow. -->

<!-- Server Constraints: Importing very large RSS files may fail due to your server's execution time or memory limits. If you encounter errors, we recommend splitting your feed into smaller files and importing them in batches. -->

<!-- Limitation of Liability: By using this plugin, you agree that the author is not liable for any damages that may result from its use. You assume full responsibility for using this tool on your system. -->

Data Attributes

name="rss_file"id="rss-file"name="taxonomy_handling"id="taxonomy-handling"name="remove_attributes"id="remove-attributes"+5 more

Shortcode Output

<a href="https://kainoto.com" target="_blank" rel="noopener">Visit Kainoto.com</a>

FAQ