Does Recast Paywall have any unpatched vulnerabilities?

No. All known vulnerabilities in Recast Paywall have been patched as of the latest data update. Always keep the plugin updated to the latest version.

Is Recast Paywall compatible with WordPress 6.8.5?

According to WordPress.org data, Recast Paywall 0.0.30 has been tested up to WordPress 6.8.5. Check the plugin's changelog for the latest compatibility information.

Is Recast Paywall compatible with PHP 8.0+?

Recast Paywall requires PHP 8.0 or higher. Most modern WordPress hosts run PHP 8.1 or 8.2. If you are on an older PHP version, consider upgrading before installing this plugin.

How often is Recast Paywall updated?

Recast Paywall was last updated on Jan 13, 2026. Frequent updates are generally a positive security signal.

What is Recast Paywall's security score?

Recast Paywall has a WP-Safety security score of 100/100. This score is computed from CVE history, patch response time, developer trust signals, and plugin maintenance activity.

Recast Paywall Security & Risk Analysis

wordpress.org/plugins/recast-paywall

Integrates RecastPay to monetize your content. Features automatic content synchronization and theme customization options.

0 active installs v0.0.30 PHP 8.0+ WP 6.2+ Updated Jan 13, 2026

content-gatingmicropaymentsmonetizationpaywallpremium-content

A · Safe

CVEs total0

Unpatched0

Last CVENever

Plugin page Download

Safety Verdict

Is Recast Paywall Safe to Use in 2026?

Generally Safe

Score 100/100

Recast Paywall has no known CVEs and is actively maintained. It's a solid choice for most WordPress installations.

No known CVEs Updated 2mo ago

Risk Assessment

The recast-paywall plugin v0.0.30 exhibits a generally positive security posture, with a strong adherence to secure coding practices. The plugin demonstrates good use of prepared statements for SQL queries and a high percentage of properly escaped output, significantly reducing the risk of common web vulnerabilities like SQL injection and cross-site scripting. The absence of known CVEs and any recorded vulnerability history further strengthens this assessment, suggesting a mature and well-maintained codebase.

However, a notable concern exists regarding the plugin's attack surface. The static analysis reveals one AJAX handler that lacks authentication checks. This unprotected entry point could potentially be exploited by unauthenticated users to trigger unintended actions or access sensitive functionality within the plugin, leading to unauthorized operations. While the taint analysis found no issues, the presence of an unprotected AJAX handler warrants attention and mitigation.

In conclusion, recast-paywall v0.0.30 is largely secure due to its robust implementation of fundamental security measures. The main weakness lies in the single unprotected AJAX endpoint, which represents a specific, albeit isolated, risk. Addressing this single vulnerability would elevate the plugin's security to an excellent level.

Key Concerns

Unprotected AJAX handler found

Vulnerabilities

None known

Recast Paywall Security Vulnerabilities

No known vulnerabilities — this is a good sign.

Code Analysis

Analyzed Mar 17, 2026

Recast Paywall Code Analysis

Dangerous Functions

Raw SQL Queries

2 prepared

Unescaped Output

156 escaped

Nonce Checks

Capability Checks

File Operations

External Requests

Bundled Libraries

SQL Query Safety

29% prepared7 total queries

Output Escaping

96% escaped162 total outputs

Attack Surface

1 unprotected

Recast Paywall Attack Surface

Entry Points5

Unprotected1

AJAX Handlers 4

authwp_ajax_recast_sync_postsrc\Plugin.php:131

authwp_ajax_recast_test_connectionsrc\Plugin.php:132

authwp_ajax_recast_get_full_contentsrc\Plugin.php:133

noprivwp_ajax_recast_get_full_contentsrc\Plugin.php:134

Shortcodes 1

[recast_paywall] src\Frontend\ContentGating.php:41

WordPress Hooks 39

filterrecast_paywall_post_htmlexamples\theme-integration.php:15

filterrecast_paywall_block_htmlexamples\theme-integration.php:55

actionwp_enqueue_scriptsexamples\theme-integration.php:91

actionwp_enqueue_scriptsexamples\theme-integration.php:189

actionrecast_paywall_before_contentexamples\theme-integration.php:234

actionrecast_paywall_after_contentexamples\theme-integration.php:239

filterrecast_paywall_summary_lengthexamples\theme-integration.php:245

filterrecast_paywall_user_stateexamples\theme-integration.php:251

filterrecast_paywall_inventory_dataexamples\theme-integration.php:260

actionwp_enqueue_scriptsexamples\theme-integration.php:269

actionwp_enqueue_scriptsexamples\theme-integration.php:296

actionplugins_loadedrecast-paywall.php:36

actionadmin_noticesrecast-paywall.php:39

actionadmin_noticesrecast-paywall.php:48

filterrender_blocksrc\Frontend\BlockGating.php:35

filterthe_contentsrc\Frontend\ContentGating.php:34

filterthe_excerptsrc\Frontend\ContentGating.php:37

filterget_the_excerptsrc\Frontend\ContentGating.php:38

actionsend_headerssrc\Frontend\ContentGating.php:44

actioninitsrc\Plugin.php:66

actioninitsrc\Plugin.php:69

actionrest_api_initsrc\Plugin.php:72

actionadmin_initsrc\Plugin.php:76

actionadmin_menusrc\Plugin.php:77

actionadd_meta_boxessrc\Plugin.php:78

actionenqueue_block_editor_assetssrc\Plugin.php:79

actionwp_enqueue_scriptssrc\Plugin.php:84

actionwp_headsrc\Plugin.php:90

actionwp_headsrc\Plugin.php:111

actionsave_postsrc\Plugin.php:121

actionsave_postsrc\Plugin.php:122

actionrest_after_insert_postsrc\Plugin.php:124

actionupdated_postmetasrc\Plugin.php:126

actiontransition_post_statussrc\Plugin.php:127

actionbefore_delete_postsrc\Plugin.php:128

actioninitsrc\Plugin.php:137

actionrecast_paywall_cleanup_transientssrc\Plugin.php:140

actionrecast_paywall_delayed_syncsrc\Plugin.php:146

actioncli_initsrc\Plugin.php:150

Scheduled Events 4

recast_paywall_cleanup_transients

recast_paywall_delayed_sync

recast_paywall_sync_retry

Maintenance & Trust

Recast Paywall Maintenance & Trust

Maintenance Signals

WordPress version tested6.8.5

Last updatedJan 13, 2026

PHP min version8.0

Downloads156

Community Trust

Rating0/100

Number of ratings0

Active installs0

Alternatives

Recast Paywall Alternatives

Steady for WordPress

steady-wp

Steady is the perfect plugin for regular payments: offer subscriptions, pledges, use a flexible paywall or start a subscription crowdfunding campaign.

600 No CVEs

PREMIUUM Content Monetization

premiuum-content-monetization

Revenue-per-Link™ content monetization. PREMIUUM makes it easy to sell articles, music, videos, files & links via subscriptions and/or micropayments.

0 No CVEs

Zlick Paywall

zlick-paywall

Sell subscriptions and one-off access to your content with industry-leading conversion rates, a simple platform to operate, and no upfront costs.

100 1 CVE

Unlock Protocol

unlock-protocol

This plugin lets authors add locks to their posts and pages so that only paying visitors can view their content.

70 No CVEs

Creditable Paywall

creditable-paywall

100

Creditable Paywall integrates pay-per-article into your website. Easily monetize your website by allowing readers to pay with credits (micropayments)

10 No CVEs

Developer Profile

Recast Paywall Developer Profile

recastplugin

1 plugin · 0 total installs

trust score

Avg Security Score

100/100

Avg Patch Time

30 days

View full developer profile

Detection Fingerprints

How We Detect Recast Paywall

Patterns used to identify this plugin on WordPress sites during automated security audits and web crawling.

Asset Fingerprints

Asset Paths

/wp-content/plugins/recast-paywall/dist/main.css/wp-content/plugins/recast-paywall/dist/main.js

Script Paths

/wp-content/plugins/recast-paywall/dist/main.js

Version Parameters

recast-paywall/dist/main.css?ver=recast-paywall/dist/main.js?ver=

HTML / DOM Fingerprints

CSS Classes

recast-paywall-wrapper

Data Attributes

data-recast-paywall-post-iddata-recast-paywall-user-iddata-recast-paywall-post-typedata-recast-paywall-theme

JS Globals

recastApirecastPurchaseContent

REST Endpoints

/wp-json/recast-paywall/v1/purchase

Shortcode Output

[recast_paywall]

FAQ