Does Publishing Checklist have any unpatched vulnerabilities?

No published vulnerabilities and no findings under coordinated disclosure as of the latest data update. Always keep the plugin updated to the latest version.

Is Publishing Checklist compatible with WordPress 4.3.34?

According to WordPress.org data, Publishing Checklist 0.1.0 has been tested up to WordPress 4.3.34. Check the plugin's changelog for the latest compatibility information.

How often is Publishing Checklist updated?

Publishing Checklist was last updated on Aug 27, 2015. Frequent updates are generally a positive security signal.

What is Publishing Checklist's security score?

Publishing Checklist has a WP-Safety security score of 85/100. This score is computed from CVE history, patch response time, developer trust signals, and plugin maintenance activity.

Publishing Checklist Security & Risk Analysis

wordpress.org/plugins/publishing-checklist

Pre-flight your posts.

200 active installs v0.1.0 PHP + WP 4.2+ Updated Aug 27, 2015

checklisteditorialpreflightpublishing

A · Safe

CVEs total0

Unpatched0

Last CVENever

Plugin page Download

Safety Verdict

Is Publishing Checklist Safe to Use in 2026?

Generally Safe

Score 85/100

Publishing Checklist has no known CVEs and is actively maintained. It's a solid choice for most WordPress installations.

No known CVEs Updated 10yr ago

Risk Assessment

The plugin 'publishing-checklist' version 0.1.0 exhibits a strong initial security posture based on the provided static analysis. The absence of any identified AJAX handlers, REST API routes, shortcodes, or cron events significantly limits the attack surface. Furthermore, the code shows no signs of dangerous functions, raw SQL queries, file operations, or external HTTP requests. While the output escaping is not perfect at 87%, this is a minor concern given the limited attack vectors. The taint analysis also reveals no identified vulnerabilities. The plugin's vulnerability history is completely clean, with no known CVEs, which is a positive indicator. Overall, this plugin appears to be developed with security in mind, prioritizing a minimal attack surface and seemingly safe coding practices. The primary area for improvement, albeit minor, lies in ensuring 100% output escaping for all potential outputs.

Key Concerns

Output escaping not 100%

Vulnerabilities

None known

Publishing Checklist Security Vulnerabilities

No known vulnerabilities — this is a good sign.

Version History

Publishing Checklist Release Timeline

v0.1.0Current

Code Analysis

Analyzed Mar 16, 2026

Publishing Checklist Code Analysis

Dangerous Functions

Raw SQL Queries

0 prepared

Unescaped Output

13 escaped

Nonce Checks

Capability Checks

File Operations

External Requests

Bundled Libraries

Output Escaping

87% escaped15 total outputs

Attack Surface

Publishing Checklist Attack Surface

Entry Points0

Unprotected0

WordPress Hooks 5

actionpublishing_checklist_enqueue_scriptspublishing-checklist.php:38

actionpost_submitbox_misc_actionspublishing-checklist.php:39

actionmanage_posts_custom_columnpublishing-checklist.php:40

filtermanage_posts_columnspublishing-checklist.php:41

actioninitpublishing-checklist.php:206

Maintenance & Trust

Publishing Checklist Maintenance & Trust

Maintenance Signals

WordPress version tested4.3.34

Last updatedAug 27, 2015

PHP min version

Downloads4K

Community Trust

Rating60/100

Number of ratings2

Active installs200

Alternatives

Publishing Checklist Alternatives

Editorial Workflow Manager

editorial-workflow-manager

100

Editorial checklist and pre-publish workflow for the WordPress editor. Create reusable checklists and get clear readiness feedback before publishing.

100 No CVEs

Pre-Publish Checklist

pre-publish-checklist

100

Easiest way to make sure your page or post is ready to go live

1K 1 CVE

Post Lock

post-lock

Post Lock prevents accidental updating or publishing of content by requiring a password to do either.

10 No CVEs

Publishing Conditions

publishing-conditions

Prevent yourself from publishing unfinished posts.

10 No CVEs

ExMoment Author

exmoment-author

100

AI-assisted content authoring, scheduling, and editorial automation for WordPress.

0 No CVEs

Developer Profile

Publishing Checklist Developer Profile

Daniel Bachhuber

10 plugins · 51K total installs

trust score

Avg Security Score

87/100

Avg Patch Time

30 days

View full developer profile

Detection Fingerprints

How We Detect Publishing Checklist

Patterns used to identify this plugin on WordPress sites during automated security audits and web crawling.

Asset Fingerprints

Asset Paths

/wp-content/plugins/publishing-checklist/assets/css/publishing-checklist.css/wp-content/plugins/publishing-checklist/assets/js/src/publishing-checklist.js

Script Paths

/wp-content/plugins/publishing-checklist/assets/js/src/publishing-checklist.js

Version Parameters

publishing-checklist.css?ver=publishing-checklist.js?ver=

HTML / DOM Fingerprints

CSS Classes

publishing-checklist-taskspublishing-checklist-task-item

FAQ