WP-Safety

Originality.ai AI Checker Security & Risk Analysis

wordpress.org/plugins/originality-ai

AI content detection tool for WordPress. Scan posts for AI-generated content with multiple detection models.

300 active installs v1.0.16 PHP 7.4+ WP 6.1+ Updated Oct 29, 2025
ai-checkerai-content-detectionai-content-detectorai-detectionai-detector
76
B · Generally Safe
CVEs total2
Unpatched1
Last CVEOct 23, 2025
Plugin page Download
Safety Verdict

Is Originality.ai AI Checker Safe to Use in 2026?

Mostly Safe

Score 76/100

Originality.ai AI Checker is generally safe to use. 2 past CVEs were resolved. Keep it updated.

2 known CVEs 1 unpatched Last CVE: Oct 23, 2025Updated 5mo ago
Risk Assessment

The 'originality-ai' v1.0.16 plugin demonstrates a generally good security posture with a strong emphasis on proper coding practices. The static analysis reveals a robust implementation of prepared statements for SQL queries, a high percentage of properly escaped output, and a significant number of nonce and capability checks, indicating a good level of defense against common web vulnerabilities. The absence of any critical or high severity taint analysis findings further supports this positive assessment.

However, the plugin's security is significantly undermined by its vulnerability history. With two known medium severity CVEs, one of which remains unpatched, and a pattern of "Missing Authorization" and "Improper Authorization" vulnerabilities, there are clear concerns about the robustness of its access control mechanisms. The unpatched CVE is a critical issue that leaves the plugin and potentially the entire WordPress installation exposed to known exploits.

In conclusion, while the code itself exhibits many strengths and good security practices, the historical vulnerability data, particularly the unpatched medium severity CVE related to authorization, presents a substantial risk. Users should be cautious and strongly encouraged to ensure all known vulnerabilities are addressed.

Key Concerns

  • Unpatched CVE (medium severity)
  • Known vulnerability history (2 CVEs)
Vulnerabilities
2

Originality.ai AI Checker Security Vulnerabilities

CVEs by Year

2 CVEs in 2025 · unpatched
2025
Patched Has unpatched

Severity Breakdown

Medium
2

2 total CVEs

CVE-2025-10901medium · 4.3Missing Authorization

Originality.ai AI Checker <= 1.0.16 - Missing Authorization to Authenticated (Subscriber+) Sensitive Information Disclosure via 'ai_get_table'

Oct 23, 2025Unpatched
CVE-2025-10902medium · 4.3Improper Authorization

Originality.ai AI Checker <= 1.0.15 - Missing Authorization to Authenticated (Subscriber+) Scan Log Deletion via ' ai_scan_result_remove'

Oct 23, 2025 Patched in 1.0.16 (15d)
Code Analysis
Analyzed Mar 16, 2026

Originality.ai AI Checker Code Analysis

Dangerous Functions
0
Raw SQL Queries
5
24 prepared
Unescaped Output
5
84 escaped
Nonce Checks
13
Capability Checks
13
File Operations
1
External Requests
2
Bundled Libraries
0

SQL Query Safety

83% prepared29 total queries

Output Escaping

94% escaped89 total outputs
Data Flows
All sanitized

Data Flow Analysis

6 flows
handle_connection (OriginalityAI.php:70)
Source (user input) Sink (dangerous op) Sanitizer Transform Unsanitized Sanitized
Attack Surface

Originality.ai AI Checker Attack Surface

Entry Points6
Unprotected0

AJAX Handlers 6

authwp_ajax_origaich_ai_scanOriginalityAI.php:55
authwp_ajax_origaich_ai_scan_result_removeOriginalityAI.php:56
authwp_ajax_origaich_dismiss_noticeOriginalityAIAdminUI.php:80
authwp_ajax_origaich_bulk_scan_progressOriginalityAIAdminUI.php:90
authwp_ajax_origaich_get_latest_scan_resultsOriginalityAIAdminUI.php:92
authwp_ajax_origaich_get_table_dataOriginalityAIAdminUI.php:93
WordPress Hooks 18
actionadmin_initOriginalityAI.php:46
actionadmin_menuOriginalityAI.php:50
actionadmin_post_originalityai_connectOriginalityAI.php:51
actionadmin_post_originalityai_disconnectOriginalityAI.php:52
actionadmin_post_originalityai_save_settingsOriginalityAI.php:53
actionadmin_enqueue_scriptsOriginalityAI.php:54
actionadmin_noticesOriginalityAI.php:57
actionadmin_initOriginalityAIAdminUI.php:77
actionadmin_noticesOriginalityAIAdminUI.php:78
actionadmin_enqueue_scriptsOriginalityAIAdminUI.php:79
actionadmin_initOriginalityAIAdminUI.php:85
actionadmin_enqueue_scriptsOriginalityAIAdminUI.php:86
actionadmin_noticesOriginalityAIAdminUI.php:87
actionai_scan_batch_eventOriginalityAIAdminUI.php:89
actionenqueue_block_editor_assetsOriginalityAIAdminUI.php:95
actionmanage_posts_extra_tablenavOriginalityAIAdminUI.php:103
actionadmin_initOriginalityAIAdminUI.php:104
actionadmin_initOriginalityAIAdminUI.php:110

Scheduled Events 1

ai_scan_batch_event
Maintenance & Trust

Originality.ai AI Checker Maintenance & Trust

Maintenance Signals

WordPress version tested6.8.5
Last updatedOct 29, 2025
PHP min version7.4
Downloads6K

Community Trust

Rating20/100
Number of ratings1
Active installs300
Alternatives

Originality.ai AI Checker Alternatives

AI Humanizer & AI Detector – Uncertify AI

AI Humanizer & AI Detector – Uncertify AI

ai-humanizer-ai-detector-uncertify-ai

A
100

Detect AI content and humanize text using UncertifyAI. Get probability scores and improve your content quality.

0 No CVEs
Developer Profile

Originality.ai AI Checker Developer Profile

originalityai

1 plugin · 300 total installs

77
trust score
Avg Security Score
76/100
Avg Patch Time
15 days
View full developer profile
Detection Fingerprints

How We Detect Originality.ai AI Checker

Patterns used to identify this plugin on WordPress sites during automated security audits and web crawling.

Asset Fingerprints

Asset Paths
/wp-content/plugins/originality-ai/assets/css/originality-ai.css/wp-content/plugins/originality-ai/assets/js/originality-ai.js
Script Paths
/wp-content/plugins/originality-ai/assets/js/originality-ai.js
Version Parameters
originality-ai/assets/css/originality-ai.css?ver=originality-ai/assets/js/originality-ai.js?ver=

HTML / DOM Fingerprints

CSS Classes
originalityai-settings-page
HTML Comments
<!-- Originality.ai AI Checker Plugin -->
Data Attributes
data-originalityai-id
JS Globals
originalityAI_ajax_object
FAQ

Frequently Asked Questions about Originality.ai AI Checker