Does Podcastify have any unpatched vulnerabilities?

No. All known vulnerabilities in Podcastify have been patched as of the latest data update. Always keep the plugin updated to the latest version.

Is Podcastify compatible with WordPress 5.8.13?

According to WordPress.org data, Podcastify 1.1.0 has been tested up to WordPress 5.8.13. Check the plugin's changelog for the latest compatibility information.

Is Podcastify compatible with PHP 7.0+?

Podcastify requires PHP 7.0 or higher. Most modern WordPress hosts run PHP 8.1 or 8.2. If you are on an older PHP version, consider upgrading before installing this plugin.

How often is Podcastify updated?

Podcastify was last updated on Unknown. Frequent updates are generally a positive security signal.

What is Podcastify's security score?

Podcastify has a WP-Safety security score of 100/100. This score is computed from CVE history, patch response time, developer trust signals, and plugin maintenance activity.

Podcastify Security & Risk Analysis

wordpress.org/plugins/podcastify

Podcastify helps to host and display Series and Episode on WordPress. And further it generates the feed url to show Podcasts on Popular Podcasting pla …

10 active installs v1.1.0 PHP 7.0+ WP 5.0+ Updated Unknown

audiofeed-urlpodcastrssvideo

A · Safe

CVEs total0

Unpatched0

Last CVENever

Plugin page Download

Safety Verdict

Is Podcastify Safe to Use in 2026?

Generally Safe

Score 100/100

Podcastify has no known CVEs and is actively maintained. It's a solid choice for most WordPress installations.

No known CVEs

Risk Assessment

The static analysis of podcastify v1.1.0 indicates a generally strong security posture. The absence of any AJAX handlers, REST API routes, shortcodes, or cron events with unprotected entry points is a significant strength, drastically limiting the plugin's attack surface. The reliance on prepared statements for all SQL queries and a good number of capability checks further bolster its security. However, there are areas for improvement. The taint analysis reveals several flows with unsanitized paths, which could potentially lead to security vulnerabilities if these paths are exploited, even though no critical or high severity issues were identified. Additionally, while the majority of output is properly escaped, a percentage still remains unescaped, posing a risk for cross-site scripting (XSS) vulnerabilities. The plugin's vulnerability history is clean, with no known CVEs, which is excellent, but it's important to remember that this doesn't guarantee future immunity. The overall assessment is positive due to the limited attack surface and good handling of database interactions, but the unsanitized paths and unescaped output warrant attention to fully mitigate potential risks.

Key Concerns

Flows with unsanitized paths
Percentage of unescaped output

Vulnerabilities

None known

Podcastify Security Vulnerabilities

No known vulnerabilities — this is a good sign.

Code Analysis

Analyzed Mar 16, 2026

Podcastify Code Analysis

Dangerous Functions

Raw SQL Queries

4 prepared

Unescaped Output

62 escaped

Nonce Checks

Capability Checks

File Operations

External Requests

Bundled Libraries

SQL Query Safety

100% prepared4 total queries

Output Escaping

61% escaped102 total outputs

Data Flows

5 unsanitized

Data Flow Analysis

7 flows5 with unsanitized paths

download_file (includes\classes\class-wpp-frontend.php:112)

Source (user input) Sink (dangerous op) Sanitizer Transform Unsanitized Sanitized

Attack Surface

Podcastify Attack Surface

Entry Points0

Unprotected0

WordPress Hooks 27

actioninitincludes\classes\class-podcast-post.php:14

filtermanage_edit-episode_series_columnsincludes\classes\class-taxonomy-fields.php:24

filtermanage_episode_series_custom_columnincludes\classes\class-taxonomy-fields.php:25

actionwpincludes\classes\class-wpp-frontend.php:52

filterwpp_player_visibilityincludes\classes\class-wpp-frontend.php:53

actionload-post.phpincludes\classes\class-wpp-meta-fields.php:44

actionload-post-new.phpincludes\classes\class-wpp-meta-fields.php:45

actionadd_meta_boxesincludes\classes\class-wpp-meta-fields.php:179

actionsave_postincludes\classes\class-wpp-meta-fields.php:180

actionadmin_enqueue_scriptsincludes\classes\class-wpp-setting-api.php:51

actionadmin_initincludes\classes\class-wpp-setting-api.php:54

actionadmin_initincludes\classes\class-wpp-settings.php:39

actionadmin_menuincludes\classes\class-wpp-settings.php:40

actioninitincludes\feed\class-wpp-podcast-feed.php:38

actioninitincludes\functions\core.php:22

actioninitincludes\functions\core.php:23

actionwp_enqueue_scriptsincludes\functions\core.php:24

actionwp_enqueue_scriptsincludes\functions\core.php:25

actionadmin_enqueue_scriptsincludes\functions\core.php:26

actionadmin_enqueue_scriptsincludes\functions\core.php:27

filtermce_cssincludes\functions\core.php:30

filterscript_loader_tagincludes\functions\core.php:32

actioninitincludes\functions\core.php:34

filterpost_password_requiredincludes\rest\class-wp-rest-posts-controller.php:317

filterpost_password_requiredincludes\rest\class-wp-rest-posts-controller.php:448

filterprotected_title_formatincludes\rest\class-wp-rest-posts-controller.php:1658

filterpost_password_requiredincludes\rest\class-wp-rest-posts-controller.php:1669

Maintenance & Trust

Podcastify Maintenance & Trust

Maintenance Signals

WordPress version tested5.8.13

Last updatedUnknown

PHP min version7.0

Downloads7K

Community Trust

Rating0/100

Number of ratings0

Active installs10

Alternatives

Podcastify Alternatives

Disco Free by Headliner

headliner-disco-free

This plugin installs and configures the Disco Free podcast recommendation widget which is built to help turn your readers into listeners.

30 No CVEs

Podcast Searcher by Clarify

podcast-searcher-by-clarify

The Clarify plugin allows you to make any audio or video embedded in your posts, pages, etc searchable via the standard WordPress search box.

10 No CVEs

Podcast Player – Your Podcasting Companion

podcast-player

100

Showcase your podcast only using podcasting feed url. Use widget, shortcode or editor block to display podcast player anywhere on your site.

10K No CVEs

Podlove Podcast Publisher

podlove-podcasting-plugin-for-wordpress

The one and only next generation podcast publishing system. Seriously. It's magical and sparkles a lot.

3K 22 CVEs

Libsyn Podcast Quick Embed

quick-embed-libsyn-podcast

This plugin adds a button in your editor to add a Libsyn Podcast Embed Player in your post or page.

100 No CVEs

Developer Profile

Podcastify Developer Profile

Sharaz Shahid

5 plugins · 5K total installs

trust score

Avg Security Score

93/100

Avg Patch Time

30 days

View full developer profile

Detection Fingerprints

How We Detect Podcastify

Patterns used to identify this plugin on WordPress sites during automated security audits and web crawling.

Asset Fingerprints

Asset Paths

/wp-content/plugins/podcastify/assets/css/podcastify-admin.css/wp-content/plugins/podcastify/assets/js/podcastify-admin.js/wp-content/plugins/podcastify/assets/css/podcastify-public.css

Script Paths

/wp-content/plugins/podcastify/assets/js/podcastify-admin.js

Version Parameters

podcastify/assets/css/podcastify-admin.css?ver=podcastify/assets/js/podcastify-admin.js?ver=podcastify/assets/css/podcastify-public.css?ver=

HTML / DOM Fingerprints

CSS Classes

wppfy-meta-labelwppfy-labelwppfy-textwppfy-selectwppfy-checkboxwppfy-radiowppfy-radio-wrapperwppfy-button+2 more

Data Attributes

wppfy-radio-wrapper

JS Globals

wpColorPicker

FAQ