WP-Safety

Map Categories to Pages Security & Risk Analysis

wordpress.org/plugins/map-categories-to-pages

Displays categories box on "Edit Page" page.

800 active installs v1.3.2 PHP + WP 2.6+ Updated Jul 4, 2012
categoriescategories-to-pagespagesrelated-pages
63
C · Use Caution
CVEs total1
Unpatched1
Last CVESep 26, 2025
Plugin page Download
Safety Verdict

Is Map Categories to Pages Safe to Use in 2026?

Use With Caution

Score 63/100

Map Categories to Pages has 1 unpatched vulnerability. Evaluate alternatives or apply available mitigations.

1 known CVE 1 unpatched Last CVE: Sep 26, 2025Updated 13yr ago
Risk Assessment

The static analysis of the 'map-categories-to-pages' v1.3.2 plugin indicates a generally good security posture with no identified critical or high severity taint flows, no dangerous functions, and no direct SQL injection vulnerabilities. The plugin also demonstrates good practice by utilizing prepared statements for its SQL queries and has a seemingly small attack surface with no directly exposed AJAX handlers, REST API routes, or shortcodes without authentication checks. However, a significant concern arises from the low percentage of properly escaped output (7%), suggesting a high likelihood of Cross-Site Scripting (XSS) vulnerabilities. This is further corroborated by its vulnerability history, which shows one known CVE for XSS, and importantly, this vulnerability is currently unpatched. The presence of an unpatched medium severity XSS vulnerability, combined with the widespread output escaping issues, significantly elevates the risk profile of this plugin.

Key Concerns

  • Unpatched medium severity CVE
  • Low percentage of properly escaped output
Vulnerabilities
1

Map Categories to Pages Security Vulnerabilities

CVEs by Year

1 CVE in 2025 · unpatched
2025
Patched Has unpatched

Severity Breakdown

Medium
1

1 total CVE

CVE-2025-60146medium · 4.4Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting')

Map Categories to Pages <= 1.3.2 - Authenticated (Administrator+) Stored Cross-Site Scripting

Sep 26, 2025Unpatched
Code Analysis
Analyzed Mar 16, 2026

Map Categories to Pages Code Analysis

Dangerous Functions
0
Raw SQL Queries
0
0 prepared
Unescaped Output
14
1 escaped
Nonce Checks
0
Capability Checks
1
File Operations
0
External Requests
0
Bundled Libraries
0

Output Escaping

7% escaped15 total outputs
Attack Surface

Map Categories to Pages Attack Surface

Entry Points0
Unprotected0
WordPress Hooks 8
actionplugins_loadedListAllPagesFromCategory.php:126
actioninitmap-categories-to-pages.php:17
actionadmin_menumap-categories-to-pages.php:25
actionpre_get_postsmap-categories-to-pages.php:70
filterthe_contentmap-categories-to-pages.php:82
actionadmin_menumcp-admin.php:3
filtermanage_pages_columnsmcp-admin.php:47
actionmanage_pages_custom_columnmcp-admin.php:48
Maintenance & Trust

Map Categories to Pages Maintenance & Trust

Maintenance Signals

WordPress version tested3.4.2
Last updatedJul 4, 2012
PHP min version
Downloads46K

Community Trust

Rating100/100
Number of ratings3
Active installs800
Alternatives

Map Categories to Pages Alternatives

Categorías y páginas por familia y profundidad

Categorías y páginas por familia y profundidad

categorias-y-paginas-por-familia-y-profundidad

A
85

Muestra con widgets y shortcodes las páginas y categorías que necesites en base a sus relaciones y profundidad.

100 No CVEs
Post Tags and Categories for Pages

Post Tags and Categories for Pages

post-tags-and-categories-for-pages

A
100

Adds the built in WordPress categories and tags to your pages.

20K No CVEs
Essential Widgets

Essential Widgets

essential-widgets

A
98

Essential Widgets is a WordPress plugin for widgets that allows you to create and add amazing widgets with high customization option

10K 2 CVEs
SEO Auto Linker

SEO Auto Linker

wpa-seo-auto-linker

B
70

SEO Auto Linker assists in creating cornerstone SEO content. This is not a full replacement for SEO plugins.

4K 1 unpatched
Socius Marketing Page Taxonomy

Socius Marketing Page Taxonomy

socius-marketing-page-taxonomy

A
85

Adds 2 custom taxonomies (categories & areas served) to Pages for easy, dynamic archive listing.

300 No CVEs
Developer Profile

Map Categories to Pages Developer Profile

Amit Verma

1 plugin · 800 total installs

68
trust score
Avg Security Score
63/100
Avg Patch Time
30 days
View full developer profile
Detection Fingerprints

How We Detect Map Categories to Pages

Patterns used to identify this plugin on WordPress sites during automated security audits and web crawling.

Asset Fingerprints

HTML / DOM Fingerprints

CSS Classes
categorychecklisttabs-panel
HTML Comments
<!-- We're putting the plugin's functions in one big function we then // call at 'plugins_loaded' (add_action() at bottom) to ensure the // required Sidebar Widget functions are available. --><!-- Check to see required Widget API functions are defined... --><!-- ...and if not, exit gracefully from the script. --><!-- This function prints the sidebar widget--the cool stuff! -->+7 more
Data Attributes
id="category-tabs"id="categories-pop"id="categorychecklist-pop"id="categories-all"id="categorychecklist"id="category-add-toggle"+5 more
JS Globals
window.wp_popular_terms_checklist
FAQ

Frequently Asked Questions about Map Categories to Pages