Does RSS CORS Enable have any unpatched vulnerabilities?

No published vulnerabilities and no findings under coordinated disclosure as of the latest data update. Always keep the plugin updated to the latest version.

Is RSS CORS Enable compatible with WordPress 6.5.8?

According to WordPress.org data, RSS CORS Enable 1.0.1 has been tested up to WordPress 6.5.8. Check the plugin's changelog for the latest compatibility information.

Is RSS CORS Enable compatible with PHP 5.6+?

RSS CORS Enable requires PHP 5.6 or higher. Most modern WordPress hosts run PHP 8.1 or 8.2. If you are on an older PHP version, consider upgrading before installing this plugin.

How often is RSS CORS Enable updated?

RSS CORS Enable was last updated on Jun 19, 2024. Frequent updates are generally a positive security signal.

What is RSS CORS Enable's security score?

RSS CORS Enable has a WP-Safety security score of 92/100. This score is computed from CVE history, patch response time, developer trust signals, and plugin maintenance activity.

RSS CORS Enable Security & Risk Analysis

wordpress.org/plugins/rss-cors-enable

This plugin adds the necessary CORS (Cross-Origin Resource Sharing) header to your WordPress RSS feed, allowing it to be accessed from any origin.

80 active installs v1.0.1 PHP 5.6+ WP 5.5+ Updated Jun 19, 2024

corscors-header-rssfeedsrssrss-feed-cors

A · Safe

CVEs total0

Unpatched0

Last CVENever

Plugin page Download

Safety Verdict

Is RSS CORS Enable Safe to Use in 2026?

Generally Safe

Score 92/100

RSS CORS Enable has no known CVEs and is actively maintained. It's a solid choice for most WordPress installations.

No known CVEs Updated 1yr ago

Risk Assessment

Based on the static analysis, the "rss-cors-enable" v1.0.1 plugin exhibits a very strong security posture. The absence of any dangerous functions, file operations, external HTTP requests, and the exclusive use of prepared statements for SQL queries are excellent indicators of secure coding practices. Furthermore, the thoroughness of output escaping and the complete lack of identified taint flows with unsanitized paths are highly commendable.

The plugin also demonstrates a clean vulnerability history with zero known CVEs, suggesting a consistent focus on security by its developers. The minimal attack surface, with no AJAX handlers, REST API routes, shortcodes, or cron events, further reduces the potential for exploitation.

Overall, this plugin appears to be exceptionally secure. The data provided indicates robust development practices and a lack of known vulnerabilities. The main potential, albeit very minor, concern would be the complete absence of nonce and capability checks. While the current attack surface is zero, any future expansion or modification to include these entry points without proper checks would introduce significant risk.

Key Concerns

No nonce checks found
No capability checks found

Vulnerabilities

None known

RSS CORS Enable Security Vulnerabilities

No known vulnerabilities — this is a good sign.

Version History

RSS CORS Enable Release Timeline

v1.0.1Current

v1.0.0

Code Analysis

Analyzed Mar 16, 2026

RSS CORS Enable Code Analysis

Dangerous Functions

Raw SQL Queries

0 prepared

Unescaped Output

0 escaped

Nonce Checks

Capability Checks

File Operations

External Requests

Bundled Libraries

Attack Surface

RSS CORS Enable Attack Surface

Entry Points0

Unprotected0

WordPress Hooks 1

actionrss2_nsrss-feed-cors-all.php:12

Maintenance & Trust

RSS CORS Enable Maintenance & Trust

Maintenance Signals

WordPress version tested6.5.8

Last updatedJun 19, 2024

PHP min version5.6

Downloads2K

Community Trust

Rating0/100

Number of ratings0

Active installs80

Alternatives

RSS CORS Enable Alternatives

Disable Feeds

disable-feeds

Disables all RSS/Atom/RDF feeds on your WordPress site.

20K No CVEs

GN Publisher: Google News Compatible RSS Feeds

gn-publisher

100

GN Publisher makes RSS feeds that comply with the Google News RSS Feed Technical Requirements for including your site in the Google News.

20K 1 CVE

Disable Feeds WP

disable-feeds-wp

100

Disables all RSS/Atom/RDF feeds on your WordPress site.

10K No CVEs

RSS Includes Pages

rss-includes-pages

100

Modifies RSS feeds so that they include pages and not just posts.

10K 1 CVE

RSS Redirect & Feedburner Alternative

feedburner-alternative-and-rss-redirect

Free Feedburner Alternative and RSS Redirect plugin from follow.it.

1K No CVEs

Developer Profile

RSS CORS Enable Developer Profile

No Frills Plugins

3 plugins · 140 total installs

trust score

Avg Security Score

92/100

Avg Patch Time

30 days

View full developer profile

Detection Fingerprints

How We Detect RSS CORS Enable

Patterns used to identify this plugin on WordPress sites during automated security audits and web crawling.

Asset Fingerprints

HTML / DOM Fingerprints

FAQ