Does Lana Text to Image have any unpatched vulnerabilities?

No. All known vulnerabilities in Lana Text to Image have been patched as of the latest data update. Always keep the plugin updated to the latest version.

Is Lana Text to Image compatible with WordPress 6.2.9?

According to WordPress.org data, Lana Text to Image 1.1.0 has been tested up to WordPress 6.2.9. Check the plugin's changelog for the latest compatibility information.

How often is Lana Text to Image updated?

Lana Text to Image was last updated on Jun 23, 2023. Frequent updates are generally a positive security signal.

What is Lana Text to Image's security score?

Lana Text to Image has a WP-Safety security score of 85/100. This score is computed from CVE history, patch response time, developer trust signals, and plugin maintenance activity.

Lana Text to Image Security & Risk Analysis

wordpress.org/plugins/lana-text-to-image

Easy to use text to image shortcode

20 active installs v1.1.0 PHP + WP 4.0+ Updated Jun 23, 2023

privacysecurityshortcodetext-to-image

A · Safe

CVEs total1

Unpatched0

Last CVEJun 23, 2023

Plugin page Download

Safety Verdict

Is Lana Text to Image Safe to Use in 2026?

Generally Safe

Score 85/100

Lana Text to Image has a strong security track record. Known vulnerabilities have been patched promptly.

1 known CVELast CVE: Jun 23, 2023Updated 2yr ago

Risk Assessment

The lana-text-to-image plugin v1.1.0 demonstrates several positive security practices, including the absence of dangerous functions, the exclusive use of prepared statements for SQL queries, and proper output escaping. The static analysis also reveals a limited attack surface with no unprotected entry points and no identified taint flows of critical or high severity. However, the plugin's vulnerability history is a significant concern. It has a known CVE, although it is currently patched. The presence of a past medium-severity vulnerability, specifically Cross-site Scripting, indicates a potential weakness in input handling. The lack of nonce checks and capability checks in the provided static analysis data, despite the presence of shortcodes, also warrants attention as it could represent an indirect risk if not handled appropriately within the shortcode's implementation.

Key Concerns

Known CVE in history
Past medium vulnerability (XSS)
Missing nonce checks
Missing capability checks

Vulnerabilities

Lana Text to Image Security Vulnerabilities

CVEs by Year

1 CVE in 2023

2023

Patched Has unpatched

Severity Breakdown

Medium

1 total CVE

CVE-2023-3387medium · 6.4Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting')

Lana Text to Image <= 1.0.0 - Authenticated (Contributor+) Stored Cross-Site Scripting via Shortcode

Jun 23, 2023 Patched in 1.1.0 (214d)

Code Analysis

Analyzed Mar 16, 2026

Lana Text to Image Code Analysis

Dangerous Functions

Raw SQL Queries

0 prepared

Unescaped Output

3 escaped

Nonce Checks

Capability Checks

File Operations

External Requests

Bundled Libraries

Output Escaping

100% escaped3 total outputs

Attack Surface

Lana Text to Image Attack Surface

Entry Points2

Unprotected0

Shortcodes 2

[lana_text_to_image] lana-text-to-image.php:102

[lana_text_to_img] lana-text-to-image.php:103

WordPress Hooks 4

actionadmin_enqueue_scriptslana-text-to-image.php:34

filtermce_external_pluginslana-text-to-image.php:177

filtermce_buttons_3lana-text-to-image.php:178

actionadmin_initlana-text-to-image.php:181

Maintenance & Trust

Lana Text to Image Maintenance & Trust

Maintenance Signals

WordPress version tested6.2.9

Last updatedJun 23, 2023

PHP min version

Downloads1K

Community Trust

Rating0/100

Number of ratings0

Active installs20

Alternatives

Lana Text to Image Alternatives

My Private Site

jonradio-private-site

Make your WordPress site private with one click for family, projects, or teams. Protection for content, login, and registration.

20K 2 CVEs

Restricted Site Access

restricted-site-access

100

Limit access to visitors who are logged in or allowed by IP addresses. Includes many options for handling blocked visitors.

20K 1 CVE

The GDPR Framework By Data443

gdpr-framework

Easy to use tools to help make your website GDPR-compliant. Fully documented, extendable and developer-friendly. Extensions to enterprise GDPR compli …

10K 1 CVE

Logout Clear Cookies

logout-clear-cookies

Clears all domain cookies on logout. Because leaving a trail of cookies is bad.

500 No CVEs

WP Author Security

wp-author-security

Protect against user enumeration attacks on author pages and other places where valid user names can be obtained.

500 No CVEs

Developer Profile

Lana Text to Image Developer Profile

Lana Codes

13 plugins · 4K total installs

trust score

Avg Security Score

92/100

Avg Patch Time

400 days

View full developer profile

Detection Fingerprints

How We Detect Lana Text to Image

Patterns used to identify this plugin on WordPress sites during automated security audits and web crawling.

Asset Fingerprints

Asset Paths

/wp-content/plugins/lana-text-to-image/assets/css/lana-text-to-image-admin.css

Script Paths

/wp-content/plugins/lana-text-to-image/assets/js/lana-text-to-image-shortcode.js

Version Parameters

lana-text-to-image/assets/css/lana-text-to-image-admin.css?ver=lana-text-to-image/assets/js/lana-text-to-image-shortcode.js?ver=

HTML / DOM Fingerprints

CSS Classes

lana-text-to-image

Shortcode Output

<img src="data:image/png;base64,

FAQ