Category of Posts Security & Risk Analysis

wordpress.org/plugins/list-a-category-of-links

This will create a list of all your posts in one specific category. They will be ordered alphabetically by category.

10 active installs v2.0 PHP + WP 2.0+ Updated Oct 19, 2007
85
A · Safe
CVEs total0
Unpatched0
Last CVENever
Safety Verdict

Is Category of Posts Safe to Use in 2026?

Generally Safe

Score 85/100

Category of Posts has no known CVEs and is actively maintained. It's a solid choice for most WordPress installations.

No known CVEs Updated 18yr ago
Risk Assessment

The static analysis of the "list-a-category-of-links" v2.0 plugin reveals a generally clean codebase with no identified direct attack vectors such as AJAX handlers, REST API routes, shortcodes, or cron events that are exposed without authentication. This indicates a good understanding of the plugin's entry points. However, the analysis also flags critical concerns within the code's handling of data. Specifically, the presence of SQL queries that are not prepared and output that is not properly escaped presents a significant risk of SQL injection and cross-site scripting (XSS) vulnerabilities, respectively. The taint analysis further supports these concerns by highlighting unsanitized data flows, even though no critical or high severity vulnerabilities were flagged in this particular scan.

The plugin's vulnerability history is entirely clean, with no recorded CVEs. This is a positive indicator, suggesting that the developers have either been diligent in their security practices or the plugin has not yet been a target for in-depth security research. However, the presence of unescaped output and unprepared SQL queries, even with a clean history, means that these vulnerabilities are latent and could be exploited if they were discovered. Therefore, while the plugin has a strong defensive posture against common attack surfaces and a history of no vulnerabilities, the internal code quality regarding data handling needs immediate attention to prevent future security breaches.

Key Concerns

  • SQL queries lack prepared statements
  • Output is not properly escaped
  • Taint flows with unsanitized paths
  • No capability checks
  • No nonce checks
Vulnerabilities
None known

Category of Posts Security Vulnerabilities

No known vulnerabilities — this is a good sign.
Version History

Category of Posts Release Timeline

No version history available.
Code Analysis
Analyzed Mar 16, 2026

Category of Posts Code Analysis

Dangerous Functions
0
Raw SQL Queries
2
0 prepared
Unescaped Output
2
0 escaped
Nonce Checks
0
Capability Checks
0
File Operations
0
External Requests
0
Bundled Libraries
0

SQL Query Safety

0% prepared2 total queries

Output Escaping

0% escaped2 total outputs
Data Flows · Security
2 unsanitized

Data Flow Analysis

2 flows2 with unsanitized paths
pc_options_page (list-a-category.php:22)
Source (user input) Sink (dangerous op) Sanitizer Transform Unsanitized Sanitized
Attack Surface

Category of Posts Attack Surface

Entry Points0
Unprotected0
WordPress Hooks 2
filterthe_contentlist-a-category.php:129
actionadmin_menulist-a-category.php:130
Maintenance & Trust

Category of Posts Maintenance & Trust

Maintenance Signals

WordPress version tested
Last updatedOct 19, 2007
PHP min version
Downloads3K

Community Trust

Rating0/100
Number of ratings0
Active installs10
Alternatives

Category of Posts Alternatives

No alternatives data available yet.

Developer Profile

Category of Posts Developer Profile

ljmacphee

6 plugins · 80 total installs

84
trust score
Avg Security Score
85/100
Avg Patch Time
30 days
View full developer profile
Detection Fingerprints

How We Detect Category of Posts

Patterns used to identify this plugin on WordPress sites during automated security audits and web crawling.

Asset Fingerprints

HTML / DOM Fingerprints

CSS Classes
wrapoptions
HTML Comments
listacategory
Data Attributes
id="message"class="updated fade"id="info_update"name="info_update"id="info_update"name="category_number"+2 more
Shortcode Output
<ul><li><a href=""></a></li>
FAQ

Frequently Asked Questions about Category of Posts