Does Post Category Advanced have any unpatched vulnerabilities?

No. All known vulnerabilities in Post Category Advanced have been patched as of the latest data update. Always keep the plugin updated to the latest version.

Is Post Category Advanced compatible with WordPress 6.0.11?

According to WordPress.org data, Post Category Advanced 1.0.1 has been tested up to WordPress 6.0.11. Check the plugin's changelog for the latest compatibility information.

How often is Post Category Advanced updated?

Post Category Advanced was last updated on Oct 20, 2022. Frequent updates are generally a positive security signal.

What is Post Category Advanced's security score?

Post Category Advanced has a WP-Safety security score of 85/100. This score is computed from CVE history, patch response time, developer trust signals, and plugin maintenance activity.

Post Category Advanced Security & Risk Analysis

wordpress.org/plugins/post-category-advanced

Create relationships between post categories and tags, and more.

0 active installs v1.0.1 PHP + WP 3.0.1+ Updated Oct 20, 2022

categorypoststagtaxonomy

A · Safe

CVEs total0

Unpatched0

Last CVENever

Download

Safety Verdict

Is Post Category Advanced Safe to Use in 2026?

Generally Safe

Score 85/100

Post Category Advanced has no known CVEs and is actively maintained. It's a solid choice for most WordPress installations.

No known CVEs Updated 3yr ago

Risk Assessment

The 'post-category-advanced' plugin v1.0.1 exhibits a generally strong security posture based on the provided static analysis. The complete absence of AJAX handlers, REST API routes, shortcodes, and cron events significantly limits its attack surface. Furthermore, the plugin demonstrates good coding practices by exclusively using prepared statements for SQL queries and performing output escaping on nearly all outputs. The lack of file operations, external HTTP requests, and bundled libraries further contributes to its robust security. The taint analysis also indicates no critical or high-severity vulnerabilities involving unsanitized paths. The plugin's vulnerability history is clean, with no recorded CVEs, suggesting a well-maintained and secure codebase over time.

However, a notable concern is the complete absence of nonce checks and capability checks. While the current attack surface is zero, this leaves the plugin vulnerable to potential privilege escalation or CSRF attacks if new entry points were to be introduced in future updates without proper security measures. The single flow with an unsanitized path, though not deemed critical or high, warrants attention as it could potentially be exploited under specific conditions. Overall, the plugin is secure in its current state but could benefit from implementing more comprehensive security checks like nonces and capability checks to ensure future resilience.

Key Concerns

No nonce checks implemented
No capability checks implemented
One unsanitized path flow found

Vulnerabilities

None known

Post Category Advanced Security Vulnerabilities

No known vulnerabilities — this is a good sign.

Code Analysis

Analyzed Mar 17, 2026

Post Category Advanced Code Analysis

Dangerous Functions

Raw SQL Queries

0 prepared

Unescaped Output

55 escaped

Nonce Checks

Capability Checks

File Operations

External Requests

Bundled Libraries

Output Escaping

98% escaped56 total outputs

Data Flows

1 unsanitized

Data Flow Analysis

1 flows1 with unsanitized paths

<post-category-advanced-admin-display> (admin\partials\post-category-advanced-admin-display.php:0)

Source (user input) Sink (dangerous op) Sanitizer Transform Unsanitized Sanitized

Attack Surface

Post Category Advanced Attack Surface

Entry Points0

Unprotected0

WordPress Hooks 9

actionadmin_menuadmin\class-post-category-advanced-admin.php:56

actionsave_postadmin\class-post-category-advanced-admin.php:57

actionsave_postadmin\class-post-category-advanced-admin.php:58

actioninitadmin\class-post-category-advanced-admin.php:59

actionplugins_loadedincludes\class-post-category-advanced.php:142

actionadmin_enqueue_scriptsincludes\class-post-category-advanced.php:157

actionadmin_enqueue_scriptsincludes\class-post-category-advanced.php:158

actionwp_enqueue_scriptsincludes\class-post-category-advanced.php:173

actionwp_enqueue_scriptsincludes\class-post-category-advanced.php:174

Maintenance & Trust

Post Category Advanced Maintenance & Trust

Maintenance Signals

WordPress version tested6.0.11

Last updatedOct 20, 2022

PHP min version

Downloads742

Community Trust

Rating0/100

Number of ratings0

Active installs0

Alternatives

Post Category Advanced Alternatives

Kntnt's Any Term for Beaver Builder Page Builder

kntnts-bb-any-term

WordPress plugin that adds special purpose term to every taxonomy (including categories and tags) that makes taxonomy filters in post modules of Beave …

10 No CVEs

Categories Images

categories-images

100

The Categories Images is a Wordpress plugin allow you to add image to category, tag or custom taxonomy.

50K No CVEs

Search & Filter

search-filter

Search and Filtering for Custom Posts, Categories, Tags, Taxonomies, Post Dates and Post Types

50K 2 CVEs

Tag, Category, and Taxonomy Manager – AI Autotagger with OpenAI

simple-tags

Tags, Categories and WordPress terms are easy with TaxoPress. Add a Tag or Category to Pages, manage your WooCommerce Categories and Tags and more.

50K 13 CVEs

Taxonomy Images

taxonomy-images

Associate images from your media library to categories, tags and custom taxonomies.

10K No CVEs

Developer Profile

Post Category Advanced Developer Profile

matteomontipo

1 plugin · 0 total installs

trust score

Avg Security Score

85/100

Avg Patch Time

30 days

View full developer profile

Detection Fingerprints

How We Detect Post Category Advanced

Patterns used to identify this plugin on WordPress sites during automated security audits and web crawling.

Asset Fingerprints

Asset Paths

/wp-content/plugins/post-category-advanced/admin/js/post-category-advanced-admin.js/wp-content/plugins/post-category-advanced/admin/css/post-category-advanced-admin.css

Script Paths

/wp-content/plugins/post-category-advanced/admin/js/post-category-advanced-admin.js

Version Parameters

post-category-advanced/admin/css/post-category-advanced-admin.css?ver=post-category-advanced/admin/js/post-category-advanced-admin.js?ver=

HTML / DOM Fingerprints

CSS Classes

pcadv-admin-display

HTML Comments

+14 more

Data Attributes

data:image/svg+xml;base64,PHN2ZyB3aWR0aD0iMjciIGhlaWdodD0iMTgiIHZpZXdCb3g9IjAgMCAyNyAxOCIgZmlsbD0ibm9uZSIgeG1sbnM9Imh0dHA6Ly93d3cudzMub3JnLzIwMDAvc3ZnIj4KPHBhdGggZD0iTTAuOTQ3NTU1IDAuODIyMjIzSDQuNjkxNTZDNS45NTQ5NiAwLjgyMjIyMyA2LjkwMjUyIDEuMTYxMTkgNy41MzQyMiAxLjgzOTExQzguMTY1OTMgMi41MTcwNCA4LjQ4MTc4IDMuNTEwODIgOC40ODE3OCA0LjgyMDQ1VjYuNDE1MTFDOC40ODE3OCA3LjcyNDc0IDguMTY1OTMgOC43MTg1MiA3LjUzNDIyIDkuMzk2NDRDNi45MDI1MiAxMC4wNzQ0IDUuOTU0OTYgMTAuNDEzMyA0LjY5MTU2IDEwLjQxMzNIMzIuNDg5NzhWMTdIMjEuMTg5ODdIMjAuNjc0MVYwLjgyMjIyM1pNNC42OTE1NiA4LjEwMjIyQzUuMTA3NTYgOC4xMDIyMiA1LjQxNTcgNy45ODY2NyA1LjYxNiA3Ljc1NTU2QzUuODMxNyA3LjUyNDQ1IDUuOTM5NTUgNy4xMzE1NiA1LjkzOTU1IDYuNTc2ODlWNC42NTg2N0M1LjkzOTU1IDQuMTA0IDUuODMxNyAzLjcxMTExIDUuNjE2IDMuNDhDNS40MTU3IDMuMjQ4ODkgNS4xMDc1NiAzLjEzMzMzIDQuNjkxNTYgMy4xMzMzM0gzLjQ4OTc4VjguMTAyMjJINC42OTE1NlpNMTMuNDQ0NyAxNy4yMzExQzEyLjIyNzUgMTcuMjMxMSAxMS4yOTU0IDE2Ljg4NDQgMTAuNjQ4MyAxNi4xOTExQzEwLjAxNjYgMTUuNDk3OCA5LjcwMDcxIDE0LjUxOTQgOS43MDA3MSAxMy4yNTZWNC41NjYyMkM5LjcwMDcxIDMuMzAyODIgMTAuMDE2NiAyLjMyNDQ1IDEwLjY0ODMgMS42MzExMUMxMS4yOTU0IDAuOTM3Nzc5IDEyLjIyNzUgMC41OTExMTIgMTMuNDQ0NyAwLjU5MTExMkMxNC42NjE5IDAuNTkxMTEyIDE1LjU4NjMgMC45Mzc3NzkgMTYuMjE4IDEuNjMxMTFDMTYuODY1MiAyLjMyNDQ1IDE3LjE4ODcgMy4zMDI4MiAxNy4xODg3IDQuNTY2MjJWNi4yNzY0NUgxNC43ODUyVjQuNDA0NDVDMTQuNzg1MiAzLjQwMjk2IDE0LjM2MTQgMi45MDIyMiAxMy41MTQgMi45MDIyMkMxMi42NjY2IDIuOTAyMjIgMTIuMjQyOSAzLjQwMjk2IDEyLjI0MjkgNC40MDQ0NVYxMy40NDA5QzEyLjI0MjkgMTQuNDI3IDEyLjY2NjYgMTQuOTIgMTMuNTE0IDE0LjkyQzE0LjM2MTQgMTQuOTIgMTQuNzg1MiAxNC40MjcgMTQuNzg1MiAxMy40NDA5VjEwLjA3MDZWMTMuMjU2QzE3LjE4ODcgMTQuNTE5NCAxNi44NjUyIDE1LjQ5NzggMTYuMjE4IDE2LjE5MTFDMTUuNTg2MyAxNi44ODQ0IDE0LjY2MTkgMTcuMjMxMSAxMy40NDQ3IDE3LjIzMTFaTTIwLjY3NDEgMC44MjIyMjNIMjQuMTU5NUwyNC4yMTAxIDE3SDIyLjMxNSAyMS4xODk4SDIxLjE4OThIMjAuNjc0MVYwLjgyMjIyM1oiIGZpbGw9ImJsYWNrIi8+Cjwvc3ZnPgo=

data:image/svg+xml;base64,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

FAQ