Does LLM Markdown – Expose Content as .md have any unpatched vulnerabilities?

No published vulnerabilities and no findings under coordinated disclosure as of the latest data update. Always keep the plugin updated to the latest version.

Is LLM Markdown – Expose Content as .md compatible with WordPress 6.9.4?

According to WordPress.org data, LLM Markdown – Expose Content as .md 1.0.0 has been tested up to WordPress 6.9.4. Check the plugin's changelog for the latest compatibility information.

Is LLM Markdown – Expose Content as .md compatible with PHP 7.4+?

LLM Markdown – Expose Content as .md requires PHP 7.4 or higher. Most modern WordPress hosts run PHP 8.1 or 8.2. If you are on an older PHP version, consider upgrading before installing this plugin.

How often is LLM Markdown – Expose Content as .md updated?

LLM Markdown – Expose Content as .md was last updated on Feb 26, 2026. Frequent updates are generally a positive security signal.

What is LLM Markdown – Expose Content as .md's security score?

LLM Markdown – Expose Content as .md has a WP-Safety security score of 100/100. This score is computed from CVE history, patch response time, developer trust signals, and plugin maintenance activity.

LLM Markdown – Expose Content as .md Security & Risk Analysis

wordpress.org/plugins/llm-markdown

Expose WordPress posts and pages as real .md URLs with YAML front matter for LLMs, AI ingestion, and headless workflows.

20 active installs v1.0.0 PHP 7.4+ WP 6.0+ Updated Feb 26, 2026

aicontent-exportheadlessllmmarkdown

A · Safe

CVEs total0

Unpatched0

Last CVENever

Plugin page Download

Safety Verdict

Is LLM Markdown – Expose Content as .md Safe to Use in 2026?

Generally Safe

Score 100/100

LLM Markdown – Expose Content as .md has no known CVEs and is actively maintained. It's a solid choice for most WordPress installations.

No known CVEs Updated 2mo ago

Risk Assessment

The "llm-markdown" v1.0.0 plugin exhibits a generally strong security posture based on the provided static analysis. The plugin has zero recorded vulnerabilities, indicating a history of secure development or timely patching. The attack surface is remarkably small with no exposed AJAX handlers, REST API routes, shortcodes, or cron events. Furthermore, the code demonstrates good practices by using prepared statements for all SQL queries and performing capability checks. The limited external HTTP request is also a positive sign. However, there are a few areas for improvement. A significant portion of output (27%) is not properly escaped, which could lead to cross-site scripting (XSS) vulnerabilities if malicious user input reaches these unescaped outputs. The absence of nonce checks on any entry points, although the entry points are currently zero, could become a concern if the attack surface expands in future versions. While taint analysis shows no critical or high severity flows, the lack of analysis coverage (0 flows analyzed) makes it difficult to fully assess this area.

Key Concerns

Unescaped output present
No nonce checks on entry points
Taint analysis not fully performed

Vulnerabilities

None known

LLM Markdown – Expose Content as .md Security Vulnerabilities

No known vulnerabilities — this is a good sign.

Version History

LLM Markdown – Expose Content as .md Release Timeline

v1.0.0Current

Code Analysis

Analyzed Mar 17, 2026

LLM Markdown – Expose Content as .md Code Analysis

Dangerous Functions

Raw SQL Queries

3 prepared

Unescaped Output

16 escaped

Nonce Checks

Capability Checks

File Operations

External Requests

Bundled Libraries

SQL Query Safety

100% prepared3 total queries

Output Escaping

73% escaped22 total outputs

Attack Surface

LLM Markdown – Expose Content as .md Attack Surface

Entry Points0

Unprotected0

WordPress Hooks 9

actioninitincludes\class-plugin.php:50

filterquery_varsincludes\class-plugin.php:51

actiontemplate_redirectincludes\class-plugin.php:52

actionwp_headincludes\class-plugin.php:53

actionpre_get_postsincludes\class-plugin.php:54

filterredirect_canonicalincludes\class-plugin.php:55

actionadmin_menuincludes\class-settings.php:32

actionadmin_initincludes\class-settings.php:33

actionplugins_loadedllm-markdown.php:33

Maintenance & Trust

LLM Markdown – Expose Content as .md Maintenance & Trust

Maintenance Signals

WordPress version tested6.9.4

Last updatedFeb 26, 2026

PHP min version7.4

Downloads238

Community Trust

Rating100/100

Number of ratings1

Active installs20

Alternatives

LLM Markdown – Expose Content as .md Alternatives

JumpsuitAI – llms.txt + Markdown Endpoints

jumpsuitai-llms-txt

100

Generate /llms.txt, /llms-full.txt & .md endpoints for AI/LLMs in WordPress. Works with Yoast SEO, Rank Math, SEOPress & All in One SEO.

100 No CVEs

Markdown for AI Agents

markdown-for-ai-agents

100

Serve clean Markdown versions of WordPress content to AI agents using HTTP content negotiation.

40 No CVEs

Mescio for Agents

mescio-for-agents

100

Mescio for Agents serves your WordPress content as clean Markdown to AI agents and GPT crawlers. Human visitors never notice a thing.

20 No CVEs

md4AI

md4ai

100

Optimise content for generative engines (GEO) by serving custom Markdown and a site-wide llms.txt.

10 No CVEs

AgentMark

agentmark

100

AI-Ready Markdown Endpoints & llms.txt discovery for WordPress. Clean, machine-readable content for AI agents and RAG systems.

0 No CVEs

Developer Profile

LLM Markdown – Expose Content as .md Developer Profile

Michael Sablone

2 plugins · 120 total installs

trust score

Avg Security Score

100/100

Avg Patch Time

30 days

View full developer profile

Detection Fingerprints

How We Detect LLM Markdown – Expose Content as .md

Patterns used to identify this plugin on WordPress sites during automated security audits and web crawling.

Asset Fingerprints

HTML / DOM Fingerprints

FAQ