Does Lyxity have any unpatched vulnerabilities?

No. All known vulnerabilities in Lyxity have been patched as of the latest data update. Always keep the plugin updated to the latest version.

Is Lyxity compatible with WordPress 6.8.5?

According to WordPress.org data, Lyxity 2.1.0 has been tested up to WordPress 6.8.5. Check the plugin's changelog for the latest compatibility information.

Is Lyxity compatible with PHP 7.0+?

Lyxity requires PHP 7.0 or higher. Most modern WordPress hosts run PHP 8.1 or 8.2. If you are on an older PHP version, consider upgrading before installing this plugin.

How often is Lyxity updated?

Lyxity was last updated on Jan 7, 2026. Frequent updates are generally a positive security signal.

What is Lyxity's security score?

Lyxity has a WP-Safety security score of 100/100. This score is computed from CVE history, patch response time, developer trust signals, and plugin maintenance activity.

Lyxity Security & Risk Analysis

wordpress.org/plugins/lyxity

Lyxity: Instantly Create & Update Intelligent Content - The indispensable engine for modern agencies and businesses.

0 active installs v2.1.0 PHP 7.0+ WP 5.0+ Updated Jan 7, 2026

ai-contentcontent-updatelyxityreviveseo

A · Safe

CVEs total0

Unpatched0

Last CVENever

Plugin page Download

Safety Verdict

Is Lyxity Safe to Use in 2026?

Generally Safe

Score 100/100

Lyxity has no known CVEs and is actively maintained. It's a solid choice for most WordPress installations.

No known CVEs Updated 2mo ago

Risk Assessment

The lyxity v2.1.0 plugin exhibits a generally good security posture, with a strong emphasis on secure coding practices. The absence of any known CVEs and no recorded vulnerabilities in its history suggests a history of robust security. The code analysis reveals good use of prepared statements for SQL queries, comprehensive nonce and capability checks, and a lack of dangerous functions or file operations, which are all positive indicators. However, a significant concern arises from the presence of 4 AJAX handlers that lack authentication checks. This creates a substantial attack surface, potentially allowing unauthorized users to trigger actions within the plugin without proper verification. While no critical taint flows were identified, these unprotected AJAX endpoints could still be exploited for various malicious purposes depending on the functionality they expose. The plugin also shows an adequate, but not perfect, rate of output escaping, with 67% properly escaped. This means a small percentage of outputs could still be vulnerable to cross-site scripting (XSS) if the unescaped data originates from untrusted sources.

Key Concerns

AJAX handlers without auth checks
Output escaping rate below 100%

Vulnerabilities

None known

Lyxity Security Vulnerabilities

No known vulnerabilities — this is a good sign.

Code Analysis

Analyzed Mar 17, 2026

Lyxity Code Analysis

Dangerous Functions

Raw SQL Queries

0 prepared

Unescaped Output

109 escaped

Nonce Checks

Capability Checks

File Operations

External Requests

Bundled Libraries

Output Escaping

67% escaped163 total outputs

Data Flows

All sanitized

Data Flow Analysis

3 flows

ajax_save_api_key (lyxity.php:593)

Source (user input) Sink (dangerous op) Sanitizer Transform Unsanitized Sanitized

Attack Surface

4 unprotected

Lyxity Attack Surface

Entry Points21

Unprotected4

AJAX Handlers 21

authwp_ajax_lyxity_preview_post_updatelyxity.php:57

authwp_ajax_lyxity_apply_post_updatelyxity.php:58

authwp_ajax_lyxity_apply_post_update_and_editlyxity.php:59

authwp_ajax_lyxity_preview_post_rewritelyxity.php:60

authwp_ajax_lyxity_apply_rewritelyxity.php:61

authwp_ajax_lyxity_apply_rewrite_and_editlyxity.php:62

authwp_ajax_lyxity_get_dashboard_data_v2lyxity.php:63

authwp_ajax_lyxity_get_stale_posts_countlyxity.php:64

authwp_ajax_lyxity_schedule_bulk_updatelyxity.php:67

authwp_ajax_lyxity_schedule_bulk_rewritelyxity.php:68

authwp_ajax_lyxity_process_bulk_updatelyxity.php:70

noprivwp_ajax_lyxity_process_bulk_updatelyxity.php:71

authwp_ajax_lyxity_process_bulk_rewritelyxity.php:72

noprivwp_ajax_lyxity_process_bulk_rewritelyxity.php:73

authwp_ajax_lyxity_save_settingslyxity.php:76

authwp_ajax_lyxity_save_api_keylyxity.php:77

authwp_ajax_lyxity_get_suggested_keywordslyxity.php:78

authwp_ajax_lyxity_get_categorieslyxity.php:80

authwp_ajax_lyxity_generate_articleslyxity.php:82

authwp_ajax_lyxity_realtime_statuslyxity.php:84

authwp_ajax_lyxity_get_activity_loglyxity.php:86

WordPress Hooks 8

actionadmin_noticeslyxity.php:40

actionplugins_loadedlyxity.php:45

actionadmin_menulyxity.php:48

actionadmin_initlyxity.php:51

actionadmin_enqueue_scriptslyxity.php:54

actionlyxity_bulk_update_cronlyxity.php:89

actionlyxity_bulk_rewrite_cronlyxity.php:90

actionadmin_noticeslyxity.php:781

Maintenance & Trust

Lyxity Maintenance & Trust

Maintenance Signals

WordPress version tested6.8.5

Last updatedJan 7, 2026

PHP min version7.0

Downloads474

Community Trust

Rating0/100

Number of ratings0

Active installs0

Alternatives

Lyxity Alternatives

Hazel Harlow

hazel-harlow

100

Keep your content fresh and up-to-date with AI-powered content updates and enhancements.

0 No CVEs

GetGenie – AI Content Writer with Keyword Research & SEO Tracking Tools

getgenie

GPT-4o powered AI content writer with 37+ templates, chatbot, AI image, NLP keyword research, SEO analysis for WordPress, Gutenberg & Elementor.

70K 4 CVEs

Spawnster: AI Blog Writer and Instant Site Generator for Publishing Articles on a Schedule

spawnster-ai-content-generator

100

The Best AI Blog Writer for Automatically Generating SEO-Friendly Blog Articles on a Schedule

300 No CVEs

RankJet AI-Powered SEO & Ranking Growth

rankjet-ai

100

Supercharge your organic growth. Seamlessly connect WordPress to RankJet AI for automated content intelligence, real-time SEO scoring, and cloud-based …

90 No CVEs

Auto Republish & Permalink Manager

auto-republish-permalink-manager

100

Boost your SEO by automatically refreshing old content. Republish posts, update modified dates, and manage permalinks with powerful scheduling.

60 No CVEs

Developer Profile

Lyxity Developer Profile

Infoforte

2 plugins · 0 total installs

trust score

Avg Security Score

100/100

Avg Patch Time

30 days

View full developer profile

Detection Fingerprints

How We Detect Lyxity

Patterns used to identify this plugin on WordPress sites during automated security audits and web crawling.

Asset Fingerprints

Asset Paths

/wp-content/plugins/lyxity/assets/css/vendor/bootstrap.min.css/wp-content/plugins/lyxity/assets/css/vendor/all.min.css/wp-content/plugins/lyxity/assets/css/vendor/alertify.min.css/wp-content/plugins/lyxity/assets/css/vendor/default.min.css/wp-content/plugins/lyxity/assets/css/admin.css/wp-content/plugins/lyxity/assets/css/hazel.css/wp-content/plugins/lyxity/assets/css/dashboard.css/wp-content/plugins/lyxity/assets/css/realtime.css+9 more

Script Paths

/wp-content/plugins/lyxity/assets/js/vendor/popper.min.js/wp-content/plugins/lyxity/assets/js/vendor/bootstrap.bundle.min.js/wp-content/plugins/lyxity/assets/js/vendor/alertify.min.js/wp-content/plugins/lyxity/assets/js/admin.js/wp-content/plugins/lyxity/assets/js/main-page.js/wp-content/plugins/lyxity/assets/js/dashboard.js+2 more

Version Parameters

lyxity/assets/css/vendor/bootstrap.min.css?ver=lyxity/assets/css/vendor/all.min.css?ver=lyxity/assets/css/vendor/alertify.min.css?ver=lyxity/assets/css/vendor/default.min.css?ver=lyxity/assets/css/admin.css?ver=lyxity/assets/css/hazel.css?ver=lyxity/assets/css/dashboard.css?ver=lyxity/assets/css/realtime.css?ver=lyxity/assets/css/settings.css?ver=lyxity/assets/js/vendor/popper.min.js?ver=lyxity/assets/js/vendor/bootstrap.bundle.min.js?ver=lyxity/assets/js/vendor/alertify.min.js?ver=lyxity/assets/js/admin.js?ver=lyxity/assets/js/main-page.js?ver=lyxity/assets/js/dashboard.js?ver=lyxity/assets/js/settings.js?ver=lyxity/assets/js/realtime.js?ver=

HTML / DOM Fingerprints

CSS Classes

lyxity-dashboardlyxity-settings-pagelyxity-realtime-status

Data Attributes

data-lyxity-api-urldata-lyxity-nonce

JS Globals

LyxityAdminLyxityDashboardLyxitySettingsLyxityRealtime

REST Endpoints

/wp-json/lyxity/v1/save-settings/wp-json/lyxity/v1/save-api-key/wp-json/lyxity/v1/get-suggested-keywords/wp-json/lyxity/v1/get-categories/wp-json/lyxity/v1/generate-articles/wp-json/lyxity/v1/realtime-status/wp-json/lyxity/v1/activity-log

FAQ