Does PPPT have any unpatched vulnerabilities?

No. All known vulnerabilities in PPPT have been patched as of the latest data update. Always keep the plugin updated to the latest version.

Is PPPT compatible with WordPress 5.8.13?

According to WordPress.org data, PPPT 1.0.2 has been tested up to WordPress 5.8.13. Check the plugin's changelog for the latest compatibility information.

How often is PPPT updated?

PPPT was last updated on Jul 20, 2021. Frequent updates are generally a positive security signal.

What is PPPT's security score?

PPPT has a WP-Safety security score of 85/100. This score is computed from CVE history, patch response time, developer trust signals, and plugin maintenance activity.

PPPT Security & Risk Analysis

wordpress.org/plugins/pppt

Archive plugins you don't need anymore, and get it back when you want it.

10 active installs v1.0.2 PHP + WP 3.0.1+ Updated Jul 20, 2021

Is PPPT Safe to Use in 2026?

Generally Safe

Score 85/100

PPPT has no known CVEs and is actively maintained. It's a solid choice for most WordPress installations.

No known CVEs Updated 4yr ago

Risk Assessment

The "pppt" plugin version 1.0.2 exhibits a generally strong security posture based on the static analysis. The absence of known CVEs and a clean vulnerability history indicate a lack of past security incidents or common vulnerabilities. Furthermore, the code analysis reveals a small attack surface with no unprotected entry points, robust use of prepared statements for SQL queries, and a decent number of capability and nonce checks in place. This suggests developers have followed many good security practices.

However, a significant concern arises from the output escaping, where only 58% of outputs are properly escaped. This leaves a substantial portion of the plugin's output potentially vulnerable to cross-site scripting (XSS) attacks if user-supplied data is not handled with sufficient sanitization before being displayed. While no critical or high-severity taint flows were identified, the unescaped outputs represent a tangible risk that could be exploited. The limited number of analyzed taint flows (2) also means the analysis might not be exhaustive.

In conclusion, "pppt" v1.0.2 has commendable security foundations with its limited attack surface and secure SQL handling. The primary weakness lies in the insufficient output escaping, which requires immediate attention to mitigate XSS risks. The lack of past vulnerabilities is positive, but the current unescaped outputs present a clear and present danger.

Key Concerns

Significant portion of outputs unescaped

Vulnerabilities

None known

PPPT Security Vulnerabilities

No known vulnerabilities — this is a good sign.

Code Analysis

Analyzed Mar 17, 2026

PPPT Code Analysis

Dangerous Functions

Raw SQL Queries

0 prepared

Unescaped Output

18 escaped

Nonce Checks

Capability Checks

File Operations

External Requests

Bundled Libraries

Output Escaping

58% escaped31 total outputs

Data Flows

All sanitized

Data Flow Analysis

2 flows

show_archives (admin\class-pppt-admin.php:265)

Source (user input) Sink (dangerous op) Sanitizer Transform Unsanitized Sanitized

Attack Surface

PPPT Attack Surface

Entry Points1

Unprotected0

AJAX Handlers 1

authwp_ajax_show_archivesadmin\class-pppt-admin.php:74

WordPress Hooks 11

filterbulk_actions-pluginsadmin\class-pppt-admin.php:56

filterhandle_bulk_actions-pluginsadmin\class-pppt-admin.php:59

filterplugin_action_linksadmin\class-pppt-admin.php:62

actionload-plugins.phpadmin\class-pppt-admin.php:68

actionpre_current_active_pluginsadmin\class-pppt-admin.php:71

actionadmin_footeradmin\class-pppt-admin.php:77

actionplugins_loadedincludes\class-pppt.php:142

actionadmin_enqueue_scriptsincludes\class-pppt.php:157

actionadmin_enqueue_scriptsincludes\class-pppt.php:158

actionwp_enqueue_scriptsincludes\class-pppt.php:173

actionwp_enqueue_scriptsincludes\class-pppt.php:174

Maintenance & Trust

PPPT Maintenance & Trust

Maintenance Signals

WordPress version tested5.8.13

Last updatedJul 20, 2021

PHP min version

Downloads1K

Community Trust

Rating0/100

Number of ratings0

Active installs10

Alternatives

PPPT Alternatives

Elementor Custom Skin

ele-custom-skin

Create new skins for Elementor PRO 3.x page builder. Design your own skins for Post and Post Archive Widgets using Elementor Loop Templates.

100K No CVEs

Add Category to Pages

add-category-to-pages

Easily add a Post Categories to Wordpress Pages

20K No CVEs

Create And Assign Categories For Pages

create-and-assign-categories-for-pages

Easily create/add post Categories to your Wordpress Pages

10K No CVEs

Disable Author Archives

disable-author-archives

100

Disable Author Archives completely removes author archives and makes the web server return status code 404 ('Not Found') instead.

10K No CVEs

Jetpack VaultPress

vaultpress

(DEPRECATED: Please install "Jetpack VaultPress Backup" instead) Jetpack VaultPress offers real-time backups, one-click restores, and premiu …

10K 2 CVEs

Developer Profile

PPPT Developer Profile

xuxu.fr

4 plugins · 180 total installs

trust score

Avg Security Score

89/100

Avg Patch Time

30 days

View full developer profile

Detection Fingerprints

How We Detect PPPT

Patterns used to identify this plugin on WordPress sites during automated security audits and web crawling.

Asset Fingerprints

Asset Paths

/wp-content/plugins/pppt/admin/css/pppt-admin.css/wp-content/plugins/pppt/admin/js/pppt-admin.js

Script Paths

/wp-content/plugins/pppt/admin/js/pppt-admin.js

Version Parameters

pppt-admin.css?ver=pppt-admin.js?ver=

HTML / DOM Fingerprints

HTML Comments

+28 more

Data Attributes

data-plugin-namedata-version

JS Globals

pppt_translate

FAQ