Presswell Publication Schedule Security & Risk Analysis
wordpress.org/plugins/presswell-publication-scheduleSimple and precise post publishing control for WordPress based on day of the week and time of day.
Is Presswell Publication Schedule Safe to Use in 2026?
Generally Safe
Score 85/100Presswell Publication Schedule has no known CVEs and is actively maintained. It's a solid choice for most WordPress installations.
The "presswell-publication-schedule" v1.0.2 plugin demonstrates a generally good security posture. The static analysis reveals a small attack surface consisting of a single AJAX handler, which importantly includes nonce and capability checks. The plugin also avoids dangerous functions, file operations, and external HTTP requests. SQL queries are all handled with prepared statements, which is a significant strength.
However, a notable concern is the low rate of output escaping (7%). This suggests a risk of Cross-Site Scripting (XSS) vulnerabilities, as user-supplied data that is not properly escaped before being displayed in the browser can be exploited. While taint analysis did not reveal any unsanitized flows, the lack of comprehensive output escaping remains a significant weakness that could be leveraged in conjunction with other plugin functionalities or WordPress core features.
The plugin's vulnerability history is clean, with no recorded CVEs. This, combined with the presence of nonce and capability checks on its entry points, suggests a development team that prioritizes security. Despite the single area of concern regarding output escaping, the overall security of this plugin appears to be strong, with a low likelihood of exploitation if the output escaping issue is addressed.
Key Concerns
- Low output escaping rate (7%)
Presswell Publication Schedule Security Vulnerabilities
Presswell Publication Schedule Code Analysis
Output Escaping
Data Flow Analysis
Presswell Publication Schedule Attack Surface
AJAX Handlers 1
WordPress Hooks 9
Maintenance & Trust
Presswell Publication Schedule Maintenance & Trust
Maintenance Signals
Community Trust
Presswell Publication Schedule Alternatives
Schedule Post Changes With PublishPress Future: Unpublish, Delete, Change Status, Trash, Change Categories
post-expirator
PublishPress Future can make scheduled changes to your content. You can unpublish posts, move posts to a new status, update the categories, and more.
WP Missed Schedule Posts
wp-missed-schedule-posts
Auto publish future/scheduled posts missed by WordPress cron
Scheduled Posts Issue Fixer
scheduled-posts-issue-fixer
The definitive solution for scheduled posts with a missed schedule warning. Thanks to a Cron that runs every minute, scheduled posts with missed deadl …
Future
future
Integrates future-dated posts into your blog. Adds future posts and category selection to Wordpress's built-in calendar widget.
MY Missed Schedule
my-missed-schedule
重发定时失败的文章。Find missed schedule posts and it republish them correctly. Once every five minutes.
Presswell Publication Schedule Developer Profile
2 plugins · 110 total installs
How We Detect Presswell Publication Schedule
Patterns used to identify this plugin on WordPress sites during automated security audits and web crawling.
Asset Fingerprints
/wp-content/plugins/presswell-publication-schedule/assets/css/admin.css/wp-content/plugins/presswell-publication-schedule/assets/js/admin.js/wp-content/plugins/presswell-publication-schedule/assets/js/admin.jspresswell-publication-schedule/assets/css/admin.css?ver=presswell-publication-schedule/assets/js/admin.js?ver=HTML / DOM Fingerprints
pwps_overridePWPS_POST_DATAwpApiSettings