Does RC Site Map Plugin have any unpatched vulnerabilities?

No. All known vulnerabilities in RC Site Map Plugin have been patched as of the latest data update. Always keep the plugin updated to the latest version.

Is RC Site Map Plugin compatible with WordPress 6.9.4?

According to WordPress.org data, RC Site Map Plugin 1.4 has been tested up to WordPress 6.9.4. Check the plugin's changelog for the latest compatibility information.

Is RC Site Map Plugin compatible with PHP 5.6+?

RC Site Map Plugin requires PHP 5.6 or higher. Most modern WordPress hosts run PHP 8.1 or 8.2. If you are on an older PHP version, consider upgrading before installing this plugin.

How often is RC Site Map Plugin updated?

RC Site Map Plugin was last updated on Jan 30, 2026. Frequent updates are generally a positive security signal.

What is RC Site Map Plugin's security score?

RC Site Map Plugin has a WP-Safety security score of 100/100. This score is computed from CVE history, patch response time, developer trust signals, and plugin maintenance activity.

RC Site Map Plugin Security & Risk Analysis

wordpress.org/plugins/rc-site-map

This plugin adds a shortcode that will list a site map or list of a particular type of post such as page, post or custom post types.

10 active installs v1.4 PHP 5.6+ WP 4.6+ Updated Jan 30, 2026

sitemap

A · Safe

CVEs total0

Unpatched0

Last CVENever

Plugin page Download

Safety Verdict

Is RC Site Map Plugin Safe to Use in 2026?

Generally Safe

Score 100/100

RC Site Map Plugin has no known CVEs and is actively maintained. It's a solid choice for most WordPress installations.

No known CVEs Updated 2mo ago

Risk Assessment

The 'rc-site-map' plugin version 1.4 exhibits a strong security posture based on the provided static analysis. The absence of dangerous functions, raw SQL queries, file operations, and external HTTP requests is highly commendable. Furthermore, all output is properly escaped, and the plugin does not bundle any external libraries, which mitigates risks associated with outdated or vulnerable dependencies. The plugin also correctly handles SQL queries using prepared statements. A key strength is the limited attack surface, with only one shortcode identified as an entry point, and importantly, no unprotected entry points are flagged. The clean vulnerability history, with no recorded CVEs, further reinforces its secure standing. The only notable area for consideration, albeit minor given the other strengths, is the absence of nonce checks and capability checks. While the current analysis indicates no vulnerabilities stemming from this, it's a good practice to implement these for enhanced security, especially if the plugin's functionality were to expand or if its context within a WordPress site changes.

Key Concerns

Missing nonce checks
Missing capability checks

Vulnerabilities

None known

RC Site Map Plugin Security Vulnerabilities

No known vulnerabilities — this is a good sign.

Code Analysis

Analyzed Mar 17, 2026

RC Site Map Plugin Code Analysis

Dangerous Functions

Raw SQL Queries

0 prepared

Unescaped Output

18 escaped

Nonce Checks

Capability Checks

File Operations

External Requests

Bundled Libraries

Output Escaping

100% escaped18 total outputs

Attack Surface

RC Site Map Plugin Attack Surface

Entry Points1

Unprotected0

Shortcodes 1

[rc_sitemap] rc-site-map.php:152

WordPress Hooks 2

actionadmin_menurc-site-map.php:13

filterplugin_row_metarc-site-map.php:34

Maintenance & Trust

RC Site Map Plugin Maintenance & Trust

Maintenance Signals

WordPress version tested6.9.4

Last updatedJan 30, 2026

PHP min version5.6

Downloads2K

Community Trust

Rating100/100

Number of ratings1

Active installs10

Alternatives

RC Site Map Plugin Alternatives

Yoast SEO – Advanced SEO with real-time guidance and built-in AI

wordpress-seo

Improve your SEO with real-time feedback, schema, and clear guidance. Upgrade for AI tools, Google Docs integration, and 24/7 support, no hidden fees.

10.0M 18 CVEs