Does KeywordBuddy have any unpatched vulnerabilities?

No published vulnerabilities and no findings under coordinated disclosure as of the latest data update. Always keep the plugin updated to the latest version.

Is KeywordBuddy compatible with WordPress 6.9.4?

According to WordPress.org data, KeywordBuddy 1.0.0 has been tested up to WordPress 6.9.4. Check the plugin's changelog for the latest compatibility information.

Is KeywordBuddy compatible with PHP 7.4+?

KeywordBuddy requires PHP 7.4 or higher. Most modern WordPress hosts run PHP 8.1 or 8.2. If you are on an older PHP version, consider upgrading before installing this plugin.

How often is KeywordBuddy updated?

KeywordBuddy was last updated on Apr 7, 2026. Frequent updates are generally a positive security signal.

What is KeywordBuddy's security score?

KeywordBuddy has a WP-Safety security score of 100/100. This score is computed from CVE history, patch response time, developer trust signals, and plugin maintenance activity.

KeywordBuddy Security & Risk Analysis

wordpress.org/plugins/keywordbuddy

Connect your WordPress site to KeywordBuddy for automated SEO blog publishing.

0 active installs v1.0.0 PHP 7.4+ WP 5.6+ Updated Apr 7, 2026

aiblogcontentpublishingseo

A · Safe

CVEs total0

Unpatched0

Last CVENever

Plugin page Download

Safety Verdict

Is KeywordBuddy Safe to Use in 2026?

Generally Safe

Score 100/100

KeywordBuddy has no known CVEs and is actively maintained. It's a solid choice for most WordPress installations.

No known CVEs Updated 1mo ago

Risk Assessment

The "keywordbuddy" v1.0.0 plugin demonstrates a generally strong security posture, adhering to many best practices. All identified entry points, including REST API routes, lack direct permission callbacks but are otherwise protected. The plugin also shows excellent adherence to secure coding with 100% prepared SQL statements and properly escaped output. Furthermore, the absence of dangerous functions, file operations, and a clean vulnerability history are positive indicators. However, two flows with unsanitized paths present a potential concern, suggesting that user-supplied data might not be adequately validated or neutralized before being used in sensitive operations. While these did not escalate to critical or high severity in the static analysis, they warrant attention as a potential avenue for exploitation.

Key Concerns

Flows with unsanitized paths

Vulnerabilities

None known

KeywordBuddy Security Vulnerabilities

No known vulnerabilities — this is a good sign.

Version History

KeywordBuddy Release Timeline

v1.0.0Current

Code Analysis

Analyzed Apr 16, 2026

KeywordBuddy Code Analysis

Dangerous Functions

Raw SQL Queries

0 prepared

Unescaped Output

34 escaped

Nonce Checks

Capability Checks

File Operations

External Requests

Bundled Libraries

Output Escaping

100% escaped34 total outputs

Data Flows · Security

2 unsanitized

Data Flow Analysis

3 flows2 with unsanitized paths

handle_approve (includes/class-admin.php:70)

Source (user input) Sink (dangerous op) Sanitizer Transform Unsanitized Sanitized

Attack Surface

KeywordBuddy Attack Surface

Entry Points2

Unprotected0

REST API Routes 2

GET/wp-json/keywordbuddy/v1/publishincludes/class-rest-api.php:7

GET/wp-json/keywordbuddy/v1/disconnectincludes/class-rest-api.php:17

WordPress Hooks 5

actionadmin_enqueue_scriptsincludes/class-admin.php:17

actionrest_api_initkeywordbuddy.php:28

actionadmin_menukeywordbuddy.php:29

actionadmin_post_keywordbuddy_approvekeywordbuddy.php:30

actionadmin_post_keywordbuddy_disconnectkeywordbuddy.php:31

Maintenance & Trust

KeywordBuddy Maintenance & Trust

Maintenance Signals

WordPress version tested6.9.4

Last updatedApr 7, 2026

PHP min version7.4

Downloads75

Community Trust

Rating0/100

Number of ratings0

Active installs0

Alternatives

KeywordBuddy Alternatives

DraftSEO.AI

draftseo-ai

100

Publish AI-generated blogs from DraftSEO.AI directly to WordPress with automatic image import and SEO optimization.

90 No CVEs

SEO Content Publisher for 8ight.ai

seo-content-publisher-for-8ight-ai

100

Connects your WordPress site to 8ight.ai. Automatically publishes SEO-optimized content to your site.

0 No CVEs

Supawriter

supawriter

100

Connect your WordPress site to Supawriter for automatic SEO-optimized article publishing.

0 No CVEs

Soro – SEO Autopilot & AI Content Writer

soro-seo

100

Connect your WordPress site to Soro for automatic AI-powered article publishing and SEO content automation.

2K No CVEs

Outrank

outrank

100

Outrank automatically creates and publishes SEO-optimized articles to your WordPress site as blog posts or drafts.

1K No CVEs

Developer Profile

KeywordBuddy Developer Profile

ticketbuddy

1 plugin · 0 total installs

trust score

Avg Security Score

100/100

Avg Patch Time

30 days

View full developer profile

Detection Fingerprints

How We Detect KeywordBuddy

Patterns used to identify this plugin on WordPress sites during automated security audits and web crawling.

Asset Fingerprints

Asset Paths

/wp-content/plugins/keywordbuddy/assets/admin.css

Version Parameters

keywordbuddy/assets/admin.css?ver=

HTML / DOM Fingerprints

CSS Classes

keywordbuddy-settingskeywordbuddy-connectedkeywordbuddy-instructionskeywordbuddy-instructions-stepkeywordbuddy-instructions-step-iconkeywordbuddy-instructions-step-textkeywordbuddy-instructions-step-headingkeywordbuddy-instructions-step-description+13 more

HTML Comments

+4 more

Data Attributes

data-nonce-approvedata-nonce-disconnectdata-kb-tokendata-kb-app

JS Globals

KeywordBuddy

REST Endpoints

/wp-json/keywordbuddy/v1/connect/wp-json/keywordbuddy/v1/disconnect/wp-json/keywordbuddy/v1/sync

FAQ