WP-Safety

Meta Data Importer Security & Risk Analysis

wordpress.org/plugins/meta-data-importer

Seamlessly integrates csv data into Yoast meta data.

10 active installs v1.2.3 PHP 5.6.39+ WP 6.0+ Updated Jan 9, 2026
csvimportermetaseoyoast
100
A · Safe
CVEs total0
Unpatched0
Last CVENever
Download
Safety Verdict

Is Meta Data Importer Safe to Use in 2026?

Generally Safe

Score 100/100

Meta Data Importer has no known CVEs and is actively maintained. It's a solid choice for most WordPress installations.

No known CVEs Updated 2mo ago
Risk Assessment

The meta-data-importer plugin version 1.2.3 exhibits a strong security posture based on the provided static analysis. The complete absence of AJAX handlers, REST API routes, shortcodes, and cron events significantly limits the plugin's attack surface. Furthermore, the analysis indicates no direct interaction with dangerous functions, no raw SQL queries (all are prepared), and 100% proper output escaping. The lack of any identified taint flows, including those with unsanitized paths, further reinforces this positive assessment. The plugin's vulnerability history is also clean, with no recorded CVEs, indicating a history of secure development or timely patching.

Key Concerns

  • File operations present without context
  • No nonce checks implemented
  • No capability checks implemented
Vulnerabilities
None known

Meta Data Importer Security Vulnerabilities

No known vulnerabilities — this is a good sign.
Code Analysis
Analyzed Mar 17, 2026

Meta Data Importer Code Analysis

Dangerous Functions
0
Raw SQL Queries
0
0 prepared
Unescaped Output
0
0 escaped
Nonce Checks
0
Capability Checks
0
File Operations
1
External Requests
0
Bundled Libraries
0
Attack Surface

Meta Data Importer Attack Surface

Entry Points0
Unprotected0
WordPress Hooks 1
actionadmin_menumeta-data-importer.php:16
Maintenance & Trust

Meta Data Importer Maintenance & Trust

Maintenance Signals

WordPress version tested6.9.4
Last updatedJan 9, 2026
PHP min version5.6.39
Downloads1K

Community Trust

Rating100/100
Number of ratings1
Active installs10
Alternatives

Meta Data Importer Alternatives

Auto Focus Keyword for SEO

Auto Focus Keyword for SEO

auto-focus-keyword-for-seo

A
100

This plugin will assign Focus Keywords to all your pages (on the backend) based on post titles, for websites using Yoast SEO and Rank Math.

2K No CVEs
MB Yoast SEO Integration

MB Yoast SEO Integration

meta-box-yoast-seo

A
92

Add content of Meta Box custom fields to Yoast SEO Content Analysis.

700 No CVEs
REST API – Head Tags

REST API – Head Tags

rest-api-head-tags

A
85

Adds all the meta tags of the head section to WordPress REST API responses, including the ones generated by SEO plugins like Yoast or All in One SEO.

200 No CVEs
IGen SEO API

IGen SEO API

igen-seo-api

A
100

Register Yoast SEO meta fields to make them accessible through REST API for reading and writing.

100 No CVEs
JSM Accurate Modified Time for SEO (Yoast SEO, Rank Math SEO, All in One SEO, etc.)

JSM Accurate Modified Time for SEO (Yoast SEO, Rank Math SEO, All in One SEO, etc.)

jsm-accurate-modified-time

A
100

Updates the WordPress post/page modified time when the output from a post/page shortcode or block changes.

30 No CVEs
Developer Profile

Meta Data Importer Developer Profile

matthewsudekum

3 plugins · 10 total installs

92
trust score
Avg Security Score
97/100
Avg Patch Time
30 days
View full developer profile
Detection Fingerprints

How We Detect Meta Data Importer

Patterns used to identify this plugin on WordPress sites during automated security audits and web crawling.

Asset Fingerprints

HTML / DOM Fingerprints

Data Attributes
for="file"
Shortcode Output
<h1 style="margin-bottom:40px">Meta Data Importer for Yoast</h1><h2>Import a CSV file:</h2><input type="file" id="file" name="file" accept=".csv" ><input type="submit" style="margin-top:10px;" class="button button-primary" value="Import">
FAQ

Frequently Asked Questions about Meta Data Importer