WP-Safety

Keekan SEO Security & Risk Analysis

wordpress.org/plugins/keekan-seo

AI SEO plugin for WordPress with on-page SEO, meta tags, schema markup, XML sitemaps, and keyword insights for business-focused websites.

0 active installs v1.0.0 PHP 8.0+ WP 6.0+ Updated Feb 6, 2026
ai-seometa-tagsschemaseositemap
100
A · Safe
CVEs total0
Unpatched0
Last CVENever
Plugin page Download
Safety Verdict

Is Keekan SEO Safe to Use in 2026?

Generally Safe

Score 100/100

Keekan SEO has no known CVEs and is actively maintained. It's a solid choice for most WordPress installations.

No known CVEs Updated 3mo ago
Risk Assessment

The "keekan-seo" plugin v1.0.0 exhibits a generally strong security posture with good practices, particularly in its handling of SQL queries and output escaping, where it performs exceptionally well. The vast majority of outputs are properly escaped, and all SQL queries utilize prepared statements, mitigating common database-related risks. The plugin also demonstrates a healthy number of nonce and capability checks, indicating an awareness of WordPress security best practices.

However, a significant concern arises from the presence of unprotected entry points within its attack surface. Specifically, one AJAX handler and one REST API route lack necessary authentication or permission checks. This oversight creates a direct pathway for unauthenticated attackers to potentially interact with plugin functionalities, leading to unintended consequences or exploitation. While no critical taint flows were identified, the four flows with unsanitized paths warrant attention, as they could indicate potential avenues for data manipulation if not properly handled downstream.

The plugin's vulnerability history is currently clean, with no recorded CVEs. This is a positive indicator, suggesting that the existing codebase may be relatively robust or that it hasn't been a significant target for vulnerability discovery. Nevertheless, the identified unprotected entry points represent a tangible risk that should be addressed regardless of past vulnerability patterns. Overall, the plugin has strengths in its core code handling but needs immediate attention to its exposed entry points to improve its security.

Key Concerns

  • AJAX handler without auth check
  • REST API route without permission callback
  • Flows with unsanitized paths
Vulnerabilities
None known

Keekan SEO Security Vulnerabilities

No known vulnerabilities — this is a good sign.
Version History

Keekan SEO Release Timeline

v1.0.0Current
Code Analysis
Analyzed Apr 16, 2026

Keekan SEO Code Analysis

Dangerous Functions
0
Raw SQL Queries
0
0 prepared
Unescaped Output
4
416 escaped
Nonce Checks
31
Capability Checks
29
File Operations
0
External Requests
10
Bundled Libraries
0

Output Escaping

99% escaped420 total outputs
Data Flows · Security
4 unsanitized

Data Flow Analysis

6 flows4 with unsanitized paths
keekan_seo_autopost_queue_update_proxy (admin/admin-menu.php:650)
Source (user input) Sink (dangerous op) Sanitizer Transform Unsanitized Sanitized
Attack Surface
2 unprotected

Keekan SEO Attack Surface

Entry Points29
Unprotected2

AJAX Handlers 28

authwp_ajax_keekan_seo_connectadmin/admin-menu.php:24
authwp_ajax_keekan_seo_run_auditadmin/admin-menu.php:26
authwp_ajax_keekan_seo_overviewadmin/admin-menu.php:27
authwp_ajax_keekan_seo_content_briefsadmin/admin-menu.php:28
authwp_ajax_keekan_seo_content_draftsadmin/admin-menu.php:29
authwp_ajax_keekan_seo_autopost_queueadmin/admin-menu.php:30
authwp_ajax_keekan_seo_autopost_queue_createadmin/admin-menu.php:31
authwp_ajax_keekan_seo_autopost_queue_updateadmin/admin-menu.php:32
authwp_ajax_keekan_seo_autopost_queue_deleteadmin/admin-menu.php:33
authwp_ajax_keekan_seo_autopost_settingsadmin/admin-menu.php:34
authwp_ajax_keekan_seo_autopost_settings_updateadmin/admin-menu.php:35
authwp_ajax_keekan_seo_analytics_snapshotsadmin/admin-menu.php:36
authwp_ajax_keekan_seo_audit_listadmin/admin-menu.php:37
authwp_ajax_keekan_seo_technical_auditadmin/admin-menu.php:38
authwp_ajax_keekan_seo_issue_postsadmin/admin-menu.php:39
authwp_ajax_keekan_seo_issue_fixadmin/admin-menu.php:40
authwp_ajax_keekan_seo_keyword_suggestionsadmin/admin-menu.php:41
authwp_ajax_keekan_seo_keyword_recentadmin/admin-menu.php:42
authwp_ajax_keekan_seo_keyword_trackedadmin/admin-menu.php:43
authwp_ajax_keekan_seo_keyword_opportunitiesadmin/admin-menu.php:44
authwp_ajax_keekan_seo_generate_postadmin/admin-menu.php:47
authwp_ajax_keekan_seo_create_postadmin/admin-menu.php:48
authwp_ajax_keekan_seo_delete_draftadmin/admin-menu.php:49
authwp_ajax_keekan_seo_disconnectadmin/admin-menu.php:50
authwp_ajax_keekan_seo_usage_limitsadmin/admin-menu.php:51
authwp_ajax_keekan_seo_flush_rewritesadmin/admin-menu.php:52
authwp_ajax_keekan_seo_sitemap_statusadmin/admin-menu.php:53
authwp_ajax_keekan_seo_rpmincludes/post-meta.php:16

REST API Routes 1

POST/wp-json/keekan-seo/v1/autopostadmin/admin-menu.php:1564
WordPress Hooks 27
actionadmin_menuadmin/admin-menu.php:21
actionadmin_enqueue_scriptsadmin/admin-menu.php:22
actionadmin_initadmin/admin-menu.php:23
actionadmin_post_keekan_seo_connectadmin/admin-menu.php:25
actionkeekan_seo_refresh_keyword_suggestionsadmin/admin-menu.php:45
actionkeekan_seo_refresh_keyword_recentadmin/admin-menu.php:46
actionrest_api_initadmin/admin-menu.php:54
actionwp_headincludes/meta-tags.php:7
filterpre_get_document_titleincludes/meta-tags.php:8
actionadd_meta_boxesincludes/post-meta.php:9
actionsave_postincludes/post-meta.php:10
actionadmin_enqueue_scriptsincludes/post-meta.php:11
actionadmin_noticesincludes/post-meta.php:12
filterdefault_hidden_meta_boxesincludes/post-meta.php:13
actioninitincludes/post-meta.php:14
actionenqueue_block_editor_assetsincludes/post-meta.php:15
actionupdated_post_metaincludes/post-meta.php:17
actionadded_post_metaincludes/post-meta.php:18
actionadmin_initincludes/post-meta.php:19
actionpost_submitbox_misc_actionsincludes/post-meta.php:20
actionsave_postincludes/post-meta.php:773
actioninitincludes/sitemap.php:7
actionadmin_initincludes/sitemap.php:8
actionparse_requestincludes/sitemap.php:9
filterquery_varsincludes/sitemap.php:10
actiontemplate_redirectincludes/sitemap.php:11
filterrobots_txtincludes/sitemap.php:12
Maintenance & Trust

Keekan SEO Maintenance & Trust

Maintenance Signals

WordPress version tested6.9.4
Last updatedFeb 6, 2026
PHP min version8.0
Downloads127

Community Trust

Rating0/100
Number of ratings0
Active installs0
Alternatives

Keekan SEO Alternatives

Rocketship SEO

Rocketship SEO

rocketship-seo

A
100

AI-powered WordPress SEO plugin with Google Analytics integration, smart meta titles, descriptions, schema markup, sitemaps, and OpenAI & Google G …

10 No CVEs
Prime SEO

Prime SEO

prime-seo

A
100

SEO for the AI Era. LLMs.txt, AI Bots Manager, Schema, Sitemap — optimize for Google, ChatGPT, Perplexity & Claude. AI meta generation (Pro).

300 No CVEs
Clarity SEO

Clarity SEO

clarity-seo

A
100

Lightweight, fast SEO plugin for WordPress — meta tags, Schema.org markup, XML sitemap, 301 redirects, 404 monitor, image SEO, breadcrumbs, and more.

80 No CVEs
SEO Fury

SEO Fury

seo-fury

A
100

50+ SEO features: meta tags, schema markup, sitemaps, redirects, Google Search Console, IndexNow, readability analysis — zero page speed impact.

30 No CVEs
Advanced SEO Toolkit

Advanced SEO Toolkit

advanced-seo-toolkit

A
92

Advanced SEO Toolkit is a comprehensive solution for optimizing your WordPress site for search engines.

0 No CVEs
Developer Profile

Keekan SEO Developer Profile

keekan

1 plugin · 0 total installs

94
trust score
Avg Security Score
100/100
Avg Patch Time
30 days
View full developer profile
Detection Fingerprints

How We Detect Keekan SEO

Patterns used to identify this plugin on WordPress sites during automated security audits and web crawling.

Asset Fingerprints

Asset Paths
/wp-content/plugins/keekan-seo/admin/css/admin-shell.css/wp-content/plugins/keekan-seo/admin/js/admin-shell.js/wp-content/plugins/keekan-seo/admin/js/overview.js/wp-content/plugins/keekan-seo/admin/js/analytics.js/wp-content/plugins/keekan-seo/admin/js/audit.js/wp-content/plugins/keekan-seo/admin/js/sitemap.js/wp-content/plugins/keekan-seo/admin/js/settings.js/wp-content/plugins/keekan-seo/admin/js/features.js+12 more
Version Parameters
keekan-seo/admin/css/admin-shell.css?ver=keekan-seo/admin/js/admin-shell.js?ver=keekan-seo/admin/js/overview.js?ver=keekan-seo/admin/js/analytics.js?ver=keekan-seo/admin/js/audit.js?ver=keekan-seo/admin/js/sitemap.js?ver=keekan-seo/admin/js/settings.js?ver=keekan-seo/admin/js/features.js?ver=keekan-seo/admin/js/search-appearance.js?ver=keekan-seo/admin/js/support.js?ver=keekan-seo/admin/js/content.js?ver=keekan-seo/admin/js/autopost.js?ver=keekan-seo/admin/js/premium-rpm.js?ver=keekan-seo/admin/js/admin-helpers.js?ver=keekan-seo/includes/css/meta-tags.css?ver=keekan-seo/includes/js/meta-tags.js?ver=keekan-seo/includes/css/sitemap.css?ver=keekan-seo/includes/js/sitemap.js?ver=keekan-seo/includes/css/post-meta.css?ver=keekan-seo/includes/js/post-meta.js?ver=

HTML / DOM Fingerprints

CSS Classes
keekan-seo-admin-shellkeekan-seo-overview-pagekeekan-seo-analytics-pagekeekan-seo-audit-pagekeekan-seo-sitemap-pagekeekan-seo-settings-pagekeekan-seo-features-pagekeekan-seo-search-appearance-page+8 more
HTML Comments
<!-- Keekan SEO Admin Shell --><!-- Keekan SEO Overview Page --><!-- Keekan SEO Analytics Page --><!-- Keekan SEO Audit Page -->+12 more
Data Attributes
data-keekan-seo-connect-noncedata-keekan-seo-run-audit-noncedata-keekan-seo-overview-noncedata-keekan-seo-content-briefs-noncedata-keekan-seo-content-drafts-noncedata-keekan-seo-autopost-queue-nonce+22 more
JS Globals
keekan_seo_admin_paramskeekan_seo_overview_paramskeekan_seo_analytics_paramskeekan_seo_audit_paramskeekan_seo_sitemap_paramskeekan_seo_settings_params+10 more
REST Endpoints
/wp-json/keekan-seo/v1/autopost
FAQ

Frequently Asked Questions about Keekan SEO