Does Native Gettext for WordPress have any unpatched vulnerabilities?

No. All known vulnerabilities in Native Gettext for WordPress have been patched as of the latest data update. Always keep the plugin updated to the latest version.

Is Native Gettext for WordPress compatible with WordPress 6.6.5?

According to WordPress.org data, Native Gettext for WordPress 1.1.4 has been tested up to WordPress 6.6.5. Check the plugin's changelog for the latest compatibility information.

Is Native Gettext for WordPress compatible with PHP 5.3+?

Native Gettext for WordPress requires PHP 5.3 or higher. Most modern WordPress hosts run PHP 8.1 or 8.2. If you are on an older PHP version, consider upgrading before installing this plugin.

How often is Native Gettext for WordPress updated?

Native Gettext for WordPress was last updated on Sep 4, 2024. Frequent updates are generally a positive security signal.

What is Native Gettext for WordPress's security score?

Native Gettext for WordPress has a WP-Safety security score of 92/100. This score is computed from CVE history, patch response time, developer trust signals, and plugin maintenance activity.

Native Gettext for WordPress Security & Risk Analysis

wordpress.org/plugins/native-gettext

A very light wrapper plugin that uses the native gettext library for faster localization.

40 active installs v1.1.4 PHP 5.3+ WP 4.7+ Updated Sep 4, 2024

gettextperformancetranslation

A · Safe

CVEs total0

Unpatched0

Last CVENever

Plugin page Download

Safety Verdict

Is Native Gettext for WordPress Safe to Use in 2026?

Generally Safe

Score 92/100

Native Gettext for WordPress has no known CVEs and is actively maintained. It's a solid choice for most WordPress installations.

No known CVEs Updated 1yr ago

Risk Assessment

The "native-gettext" v1.1.4 plugin exhibits a strong security posture based on the provided static analysis. The absence of any detected dangerous functions, the exclusive use of prepared statements for SQL queries, and complete output escaping are significant strengths. Furthermore, the plugin has no recorded vulnerability history, indicating a consistent focus on security over time.

While the static analysis reveals a very small attack surface with no apparent unprotected entry points, and no critical or high severity taint flows, there are areas for improvement. The lack of nonce checks and capability checks across any potential entry points is a notable concern. Although the current analysis shows no AJAX handlers or REST API routes, if these were to be introduced or modified in future versions, the absence of these fundamental security mechanisms would pose a significant risk.

In conclusion, the plugin demonstrates excellent adherence to secure coding practices regarding data handling and output. However, the reliance on the absence of exposed entry points for security, rather than implementing explicit authentication and authorization checks, represents a potential weakness. Future development should prioritize integrating nonce and capability checks to ensure robust security regardless of the attack surface.

Key Concerns

0 nonce checks detected
0 capability checks detected

Vulnerabilities

None known

Native Gettext for WordPress Security Vulnerabilities

No known vulnerabilities — this is a good sign.

Code Analysis

Analyzed Mar 16, 2026

Native Gettext for WordPress Code Analysis

Dangerous Functions

Raw SQL Queries

0 prepared

Unescaped Output

4 escaped

Nonce Checks

Capability Checks

File Operations

External Requests

Bundled Libraries

Output Escaping

100% escaped4 total outputs

Attack Surface

Native Gettext for WordPress Attack Surface

Entry Points0

Unprotected0

WordPress Hooks 5

filteroverride_load_textdomainclasses\class-native-load-textdomain.php:24

actionadmin_noticesclasses\class-native-mo.php:279

filterwp_headersclasses\class-native-mo.php:329

filterwp_headersnative-gettext.php:37

actionadmin_noticesnative-gettext.php:43

Maintenance & Trust

Native Gettext for WordPress Maintenance & Trust

Maintenance Signals

WordPress version tested6.6.5

Last updatedSep 4, 2024

PHP min version5.3

Downloads3K

Community Trust

Rating100/100

Number of ratings3

Active installs40

Alternatives

Native Gettext for WordPress Alternatives

Speed Up – Translation Cache

speed-up-translation

100

The translations reduces speed of Wordpress. This plugin offers a caching solution that reduces this effects on performance.

100 No CVEs

Performant Translations

performant-translations

100

Making internationalization/localization in WordPress faster than ever before.

40K No CVEs

Gettext override translations

gettext-override-translations

GUI in backend to override texts and translations without any programming knowledge.

2K 1 CVE

WP Override String Translations

wp-override-translations

100

Thanks to this plugin you can translate all the strings of your portal through the admin panel.

1K No CVEs

Fast Translate

fast-translate

Faster WordPress localization with cache support.

10 No CVEs

Developer Profile

Native Gettext for WordPress Developer Profile

colinleroy

1 plugin · 40 total installs

trust score

Avg Security Score

92/100

Avg Patch Time

30 days

View full developer profile

Detection Fingerprints

How We Detect Native Gettext for WordPress

Patterns used to identify this plugin on WordPress sites during automated security audits and web crawling.

Asset Fingerprints

HTML / DOM Fingerprints

CSS Classes

notice-warning

FAQ