Does Post Typographer have any unpatched vulnerabilities?

No. All known vulnerabilities in Post Typographer have been patched as of the latest data update. Always keep the plugin updated to the latest version.

Is Post Typographer compatible with WordPress 4.9.29?

According to WordPress.org data, Post Typographer 12 has been tested up to WordPress 4.9.29. Check the plugin's changelog for the latest compatibility information.

How often is Post Typographer updated?

Post Typographer was last updated on Dec 5, 2017. Frequent updates are generally a positive security signal.

What is Post Typographer's security score?

Post Typographer has a WP-Safety security score of 85/100. This score is computed from CVE history, patch response time, developer trust signals, and plugin maintenance activity.

Post Typographer Security & Risk Analysis

wordpress.org/plugins/post-typographer

Adds non-breaking spaces, `` tags, common spaces, tags and dashes where needed. Works with English texts only.

10 active installs v12 PHP + WP 2.5+ Updated Dec 5, 2017

formattingpostpoststypography

A · Safe

CVEs total0

Unpatched0

Last CVENever

Plugin page Download

Safety Verdict

Is Post Typographer Safe to Use in 2026?

Generally Safe

Score 85/100

Post Typographer has no known CVEs and is actively maintained. It's a solid choice for most WordPress installations.

No known CVEs Updated 8yr ago

Risk Assessment

The post-typographer plugin, version 12, exhibits a strong security posture based on the provided static analysis. There are no identified entry points like AJAX handlers, REST API routes, shortcodes, or cron events that are accessible without authentication. Furthermore, the code signals indicate robust development practices, with no dangerous functions, all SQL queries using prepared statements, and all outputs properly escaped. The absence of file operations, external HTTP requests, and critically, nonce and capability checks, along with no bundled libraries, further bolsters its security profile. The taint analysis shows zero flows, indicating no identifiable pathways for unsanitized data to be exploited. The plugin's vulnerability history is also clean, with no recorded CVEs of any severity. This lack of historical vulnerabilities suggests a consistent focus on security by the developers. Overall, the plugin presents a very low risk, with its strengths lying in its minimal attack surface and diligent coding practices.

Vulnerabilities

None known

Post Typographer Security Vulnerabilities

No known vulnerabilities — this is a good sign.

Code Analysis

Analyzed Mar 16, 2026

Post Typographer Code Analysis

Dangerous Functions

Raw SQL Queries

0 prepared

Unescaped Output

0 escaped

Nonce Checks

Capability Checks

File Operations

External Requests

Bundled Libraries

Attack Surface

Post Typographer Attack Surface

Entry Points0

Unprotected0

WordPress Hooks 1

actionpublish_posttypopost.php:100

Maintenance & Trust

Post Typographer Maintenance & Trust

Maintenance Signals

WordPress version tested4.9.29

Last updatedDec 5, 2017

PHP min version

Downloads4K

Community Trust

Rating0/100

Number of ratings0

Active installs10

Alternatives

Post Typographer Alternatives

Remove Double Space

remove-double-space

Remove duplicate whitespace in between sentences or elsewhere within posts. Useful if multiple contributors use different styles for sentence spacing.

100 No CVEs