WP-Safety

MW LLMS Index Security & Risk Analysis

wordpress.org/plugins/mw-llm-index

Generate AI-friendly llms.txt and llms.json index files to help AI systems discover and understand your WordPress content.

50 active installs v1.0.0 PHP 7.4+ WP 5.5+ Updated Dec 8, 2025
aiindexllms-txtseositemap
100
A · Safe
CVEs total0
Unpatched0
Last CVENever
Download
Safety Verdict

Is MW LLMS Index Safe to Use in 2026?

Generally Safe

Score 100/100

MW LLMS Index has no known CVEs and is actively maintained. It's a solid choice for most WordPress installations.

No known CVEs Updated 3mo ago
Risk Assessment

The "mw-llm-index" v1.0.0 plugin exhibits a generally good security posture based on the static analysis. The absence of direct SQL queries and a high percentage of properly escaped outputs are positive indicators. Furthermore, the plugin demonstrates good practice by implementing nonce and capability checks, and it has no reported vulnerabilities, which suggests a history of secure development. The limited attack surface and the fact that all identified entry points appear to be protected further bolster its security.

However, there are a couple of points of concern. The taint analysis identified two flows with unsanitized paths. While these did not reach critical or high severity, unsanitized paths can sometimes lead to vulnerabilities if not properly handled by the plugin's logic, especially in conjunction with file operations. The presence of file operations, even without immediate exploitable flows, warrants careful review.

In conclusion, "mw-llm-index" v1.0.0 appears to be a reasonably secure plugin, benefiting from proactive security measures and a clean vulnerability history. The primary area for improvement lies in ensuring the absolute sanitization of all path-related data, even if no immediate critical risks were detected in the taint analysis. Developers should remain vigilant about potential issues arising from the file operations.

Key Concerns

  • Unsanitized paths in taint flows
  • File operations present
  • Low percentage of escaped outputs
Vulnerabilities
None known

MW LLMS Index Security Vulnerabilities

No known vulnerabilities — this is a good sign.
Code Analysis
Analyzed Mar 16, 2026

MW LLMS Index Code Analysis

Dangerous Functions
0
Raw SQL Queries
0
0 prepared
Unescaped Output
4
21 escaped
Nonce Checks
1
Capability Checks
2
File Operations
2
External Requests
0
Bundled Libraries
0

Output Escaping

84% escaped25 total outputs
Data Flows
2 unsanitized

Data Flow Analysis

2 flows2 with unsanitized paths
maybe_log (includes\class-mw-llms-logger.php:7)
Source (user input) Sink (dangerous op) Sanitizer Transform Unsanitized Sanitized
Attack Surface

MW LLMS Index Attack Surface

Entry Points1
Unprotected0

REST API Routes 1

GET/wp-json/mw-llms/v1/indexincludes\class-mw-llms-generator.php:272
WordPress Hooks 11
actionadmin_menuincludes\class-mw-llms-admin.php:4
actionadmin_initincludes\class-mw-llms-admin.php:5
actioninitincludes\class-mw-llms-generator.php:4
actioninitincludes\class-mw-llms-generator.php:5
actiontemplate_redirectincludes\class-mw-llms-generator.php:6
actionadmin_post_mw_llms_regenerateincludes\class-mw-llms-generator.php:7
actionrest_api_initincludes\class-mw-llms-generator.php:8
actioninitincludes\class-mw-llms-logger.php:4
actionmw_llms_generate_cronincludes\class-mw-llms-scheduler.php:4
actionplugins_loadedmw-llms-index.php:19
filterplugin_row_metamw-llms-index.php:39

Scheduled Events 1

mw_llms_generate_cron
Maintenance & Trust

MW LLMS Index Maintenance & Trust

Maintenance Signals

WordPress version tested6.9.4
Last updatedDec 8, 2025
PHP min version7.4
Downloads195

Community Trust

Rating100/100
Number of ratings1
Active installs50
Alternatives

MW LLMS Index Alternatives

IA SEO Generator

IA SEO Generator

ia-seo-generator

A
100

Make your site visible to AI: serve an AI-ready /llms.txt (no root). Appear in answers on ChatGPT, Perplexity, Claude, Gemini, Copilot, Comet.

100 No CVEs
Odyssey LLMS

Odyssey LLMS

odyssey-llms

A
100

The complete AI control panel for WordPress. Generate llms.txt, Markdown, and JSONL. Includes AI Analytics and Content Cleaning.

60 No CVEs
ThinkRank – AI SEO Assistant (LLMs, Schema, Metadata, Sitemaps, GA4)

ThinkRank – AI SEO Assistant (LLMs, Schema, Metadata, Sitemaps, GA4)

thinkrank

A
100

AI SEO for WordPress: content briefs, metadata, schema, sitemaps, GA4 & Search Console, PageSpeed, and actionable insights.

10 No CVEs
WebDigit LLMs Index Suite

WebDigit LLMs Index Suite

webdigit-llms-index-suite

A
100

Generate llms.txt, llms-full.txt, llms.json and AI-ready image indexes (Markdown + JSON-LD). Public URLs, REST API (ETag), cron and WP-CLI included.

0 No CVEs
SEOPress – On-site SEO & Analytics

SEOPress – On-site SEO & Analytics

wp-seopress

A
94

SEOPress, a simple, fast and powerful all in one SEO plugin for WordPress. Rank higher in search engines, fully white label. Now with AI.

300K 14 CVEs
Developer Profile

MW LLMS Index Developer Profile

mohamed wazery

1 plugin · 50 total installs

94
trust score
Avg Security Score
100/100
Avg Patch Time
30 days
View full developer profile
Detection Fingerprints

How We Detect MW LLMS Index

Patterns used to identify this plugin on WordPress sites during automated security audits and web crawling.

Asset Fingerprints

HTML / DOM Fingerprints

HTML Comments
MW LLM Index generated by MW LLM Index PluginUpdated: YYYY-MM-DD HH:MM:SS
REST Endpoints
/wp-json/mw-llms-index/v1/regenerate
FAQ

Frequently Asked Questions about MW LLMS Index