Does Post Descriptions have any unpatched vulnerabilities?

No. All known vulnerabilities in Post Descriptions have been patched as of the latest data update. Always keep the plugin updated to the latest version.

Is Post Descriptions compatible with WordPress 6.8.5?

According to WordPress.org data, Post Descriptions 1.3.0 has been tested up to WordPress 6.8.5. Check the plugin's changelog for the latest compatibility information.

Is Post Descriptions compatible with PHP 5.6+?

Post Descriptions requires PHP 5.6 or higher. Most modern WordPress hosts run PHP 8.1 or 8.2. If you are on an older PHP version, consider upgrading before installing this plugin.

How often is Post Descriptions updated?

Post Descriptions was last updated on Jun 26, 2025. Frequent updates are generally a positive security signal.

What is Post Descriptions's security score?

Post Descriptions has a WP-Safety security score of 100/100. This score is computed from CVE history, patch response time, developer trust signals, and plugin maintenance activity.

Post Descriptions Security & Risk Analysis

wordpress.org/plugins/post-descriptions

A lightweight WordPress plugin that lets you add quick descriptions or personal notes to your posts and pages — perfect for reminders, to-do's, o …

100 active installs v1.3.0 PHP 5.6+ WP 4.9+ Updated Jun 26, 2025

adminorganizepagespostsui

A · Safe

CVEs total0

Unpatched0

Last CVENever

Plugin page Download

Safety Verdict

Is Post Descriptions Safe to Use in 2026?

Generally Safe

Score 100/100

Post Descriptions has no known CVEs and is actively maintained. It's a solid choice for most WordPress installations.

No known CVEs Updated 9mo ago

Risk Assessment

The "post-descriptions" plugin v1.3.0 demonstrates a strong security posture based on the provided static analysis. The absence of any identified attack surface entry points, dangerous functions, or taint flows is a significant positive indicator. Furthermore, the consistent use of prepared statements for SQL queries and a high percentage of properly escaped output suggest good development practices in these critical areas. The presence of nonce and capability checks further reinforces this, indicating an effort to protect against common WordPress vulnerabilities.

While the code analysis reveals minimal immediate risks, it's important to note the complete lack of vulnerability history. This is generally a positive sign, suggesting the plugin has not historically been a target or has maintained a secure codebase. However, it also means there's no historical data to analyze for patterns of common weaknesses. The absence of external HTTP requests and file operations also reduces the potential attack vectors. Overall, the plugin appears to be developed with security in mind, presenting a low immediate risk.

Vulnerabilities

None known

Post Descriptions Security Vulnerabilities

No known vulnerabilities — this is a good sign.

Code Analysis

Analyzed Mar 16, 2026

Post Descriptions Code Analysis

Dangerous Functions

Raw SQL Queries

0 prepared

Unescaped Output

17 escaped

Nonce Checks

Capability Checks

File Operations

External Requests

Bundled Libraries

Output Escaping

81% escaped21 total outputs

Attack Surface

Post Descriptions Attack Surface

Entry Points0

Unprotected0

WordPress Hooks 14

actioninitinc\add-post-states.php:29

actionadd_meta_boxesinc\add-post-states.php:61

actionsave_postinc\add-post-states.php:116

actionquick_edit_custom_boxinc\add-quick-edit.php:33

actioninitinc\add-quick-edit.php:88

actionadmin_print_footer_scripts-edit.phpinc\add-quick-edit.php:132

actioninitinc\admin-columns.php:46

actionplugins_loadedinc\init.php:16

actionafter_setup_themeinc\init.php:37

actioninitinc\register-admin-columns.php:47

actionadmin_initinc\settings.php:64

actionadmin_menuinc\settings.php:132

actionadmin_enqueue_scriptsinc\settings.php:176

filterdisplay_post_statesinc\update-post-states.php:39

Maintenance & Trust

Post Descriptions Maintenance & Trust

Maintenance Signals

WordPress version tested6.8.5

Last updatedJun 26, 2025

PHP min version5.6

Downloads4K

Community Trust

Rating100/100

Number of ratings6

Active installs100

Alternatives

Post Descriptions Alternatives

Bulk Edit YOAST SEO fields in Spreadsheet

wp-sheet-editor-yoast-seo

Bulk Edit posts, pages, and WooCommerce products YOAST SEO fields using a spreadsheet.

1K No CVEs

Columns renaming for WP Sheet Editor

wp-sheet-editor-columns-renaming

Rename spreadsheet columns when you are bulk editing Posts and Pages using the spreadsheet.

100 No CVEs

LH Archived Post Status

lh-archived-post-status

Allows posts and pages to be archived so you can remove content from the main loop and feed without having to trash it.

4K No CVEs

Quick Bulk Post & Page Creator

quick-bulk-post-page-creator

A handy tool for batch creation of posts and pages in your preferred hierarchy.

2K No CVEs

Sortable Word Count Reloaded

sortable-word-count-reloaded

100

Adds a sortable column to the posts and pages admin list with the word count of each page/post.

2K No CVEs

Developer Profile

Post Descriptions Developer Profile

Tom de Visser

1 plugin · 100 total installs

trust score

Avg Security Score

100/100

Avg Patch Time

30 days

View full developer profile

Detection Fingerprints

How We Detect Post Descriptions

Patterns used to identify this plugin on WordPress sites during automated security audits and web crawling.

Asset Fingerprints

Asset Paths

/wp-content/plugins/post-descriptions/assets/css/post-descriptions.css/wp-content/plugins/post-descriptions/assets/js/post-descriptions.js

Script Paths

/wp-content/plugins/post-descriptions/assets/js/post-descriptions.js

Version Parameters

post-descriptions/assets/css/post-descriptions.css?ver=post-descriptions/assets/js/post-descriptions.js?ver=

HTML / DOM Fingerprints

CSS Classes

post-description-highlight

Data Attributes

data-post-descriptiondata-important-color

JS Globals

postDescriptions

FAQ