WP-Safety

Plugin Categories Security & Risk Analysis

wordpress.org/plugins/plugin-categories

Categorize your WordPress Plugins just like you would posts.

10 active installs v0.2.2 PHP + WP 3.8+ Updated Jul 1, 2014
backendcategoriesmanagement
85
A · Safe
CVEs total0
Unpatched0
Last CVENever
Plugin page Download
Safety Verdict

Is Plugin Categories Safe to Use in 2026?

Generally Safe

Score 85/100

Plugin Categories has no known CVEs and is actively maintained. It's a solid choice for most WordPress installations.

No known CVEs Updated 11yr ago
Risk Assessment

The plugin 'plugin-categories' v0.2.2 presents a moderate security risk due to several identified vulnerabilities in its static analysis. The presence of an AJAX handler without any authentication checks significantly expands the attack surface. Furthermore, the use of the `unserialize` function is a critical concern, as it can lead to remote code execution if untrusted data is unserialized. While the plugin demonstrates good practices by using prepared statements for SQL queries and having no known CVEs, the lack of proper output escaping for a significant portion of its outputs also raises concerns about potential cross-site scripting (XSS) vulnerabilities. The taint analysis also reveals flows with unsanitized paths, which, while not classified as critical or high severity in this specific analysis, warrants attention due to the potential for exploiting unescaped data or insecure functions.

Key Concerns

  • AJAX handler without auth check
  • Use of unserialize function
  • Unescaped output identified
  • Unsanitized paths in taint flows
Vulnerabilities
None known

Plugin Categories Security Vulnerabilities

No known vulnerabilities — this is a good sign.
Code Analysis
Analyzed Mar 16, 2026

Plugin Categories Code Analysis

Dangerous Functions
1
Raw SQL Queries
0
0 prepared
Unescaped Output
10
5 escaped
Nonce Checks
0
Capability Checks
0
File Operations
0
External Requests
0
Bundled Libraries
0

Dangerous Functions Found

unserialize$categories = unserialize($value);classes\views.php:429

Output Escaping

33% escaped15 total outputs
Data Flows
3 unsanitized

Data Flow Analysis

3 flows3 with unsanitized paths
ajax (classes\views.php:309)
Source (user input) Sink (dangerous op) Sanitizer Transform Unsanitized Sanitized
Attack Surface
1 unprotected

Plugin Categories Attack Surface

Entry Points1
Unprotected1

AJAX Handlers 1

authwp_ajax_plugin_categoryclasses\views.php:31
WordPress Hooks 13
actionplugins_loadedclasses\plugin.categories.php:15
actioninitclasses\views.php:17
actionadmin_menuclasses\views.php:19
actionparent_fileclasses\views.php:21
actionmanage_plugins_custom_columnclasses\views.php:23
filtermanage_plugins_columnsclasses\views.php:25
filterplugin_action_linksclasses\views.php:27
actionadmin_enqueue_scriptsclasses\views.php:29
actionpre_current_active_pluginsclasses\views.php:33
filterall_pluginsclasses\views.php:35
filtermanage_edit-plugin_category_columnsclasses\views.php:37
actionmanage_plugin_category_custom_columnclasses\views.php:39
actionadmin_noticesplugin-categories.php:89
Maintenance & Trust

Plugin Categories Maintenance & Trust

Maintenance Signals

WordPress version tested3.9.40
Last updatedJul 1, 2014
PHP min version
Downloads2K

Community Trust

Rating100/100
Number of ratings1
Active installs10
Alternatives

Plugin Categories Alternatives

Real Category Management: Content Management in Category Folders

Real Category Management: Content Management in Category Folders

real-category-library-lite

A
100

Organize content like posts, pages or WooCommerce products in category folders. Mass content management made easy with Real Category Management! (Alte …

3K No CVEs
News Manager

News Manager

news-manager

A
85

Every CMS site needs a news section. News Manager allows you add, manage and display news, date archives, AJAX Calendar, Categories, Tags and more.

700 No CVEs
Automatic Product Categories for WooCommerce

Automatic Product Categories for WooCommerce

automatic-product-categories-for-woocommerce

A
100

Automatically assign WooCommerce product categories and tags using smart, rule-based automation. Save time managing products at scale.

300 No CVEs
Category Tools for WooCommerce

Category Tools for WooCommerce

category-tools-for-woocommerce

A
92

Category Tools for WooCommerce simplifies bulk category management, allowing you to add, remove, copy, and move products between categories efficientl …

100 No CVEs
Easy Categories Management Widget

Easy Categories Management Widget

easy-categories-management-widget

A
85

This plugin adds a widget which let you display a list of categories in your sidebar with more features and flexibility.

70 No CVEs
Developer Profile

Plugin Categories Developer Profile

tormorten

6 plugins · 100 total installs

83
trust score
Avg Security Score
84/100
Avg Patch Time
30 days
View full developer profile
Detection Fingerprints

How We Detect Plugin Categories

Patterns used to identify this plugin on WordPress sites during automated security audits and web crawling.

Asset Fingerprints

Asset Paths
/wp-content/plugins/plugin-categories/css/plugin-categories.css/wp-content/plugins/plugin-categories/js/plugin-categories.js
Script Paths
/wp-content/plugins/plugin-categories/js/plugin-categories.js
Version Parameters
plugin-categories/css/plugin-categories.css?ver=plugin-categories/js/plugin-categories.js?ver=

HTML / DOM Fingerprints

CSS Classes
plugin-categories-wrapplugin-categories-categories
HTML Comments
<!-- Plugin Categories Addon --><!-- Plugin Categories by Tor Morten Jensen -->
Data Attributes
data-plugin-categories-iddata-plugin-categories-nonce
JS Globals
pluginCategoriesplugin_categories_ajaxurl
FAQ

Frequently Asked Questions about Plugin Categories