WP-Safety

RY Toolkit Security & Risk Analysis

wordpress.org/plugins/ry-toolkit

Useful tools for more control over you website. Include cron, media, sitemap, OPcache.

20 active installs v1.4.8 PHP 7.4+ WP 6.0+ Updated Dec 10, 2025
tool
100
A · Safe
CVEs total0
Unpatched0
Last CVENever
Plugin page Download
Safety Verdict

Is RY Toolkit Safe to Use in 2026?

Generally Safe

Score 100/100

RY Toolkit has no known CVEs and is actively maintained. It's a solid choice for most WordPress installations.

No known CVEs Updated 3mo ago
Risk Assessment

The "ry-toolkit" v1.4.8 plugin exhibits a generally strong security posture based on the static analysis and vulnerability history. The absence of known CVEs and the plugin's diligent use of prepared statements for SQL queries (64%) and proper output escaping (96%) are significant strengths. Furthermore, the extensive use of nonce checks (11) and capability checks (9) indicates a good awareness of common WordPress security vulnerabilities.

However, a single flow with unsanitized paths identified during taint analysis warrants attention. While it's not classified as critical or high severity, any unsanitized path can potentially lead to directory traversal or file inclusion vulnerabilities if exploited under specific circumstances. The attack surface analysis showing zero entry points without authentication is excellent, but the presence of file operations (7) combined with the unsanitized path flow could present a latent risk.

In conclusion, "ry-toolkit" v1.4.8 is a well-developed plugin with a strong emphasis on secure coding practices. The near-perfect output escaping and solid handling of SQL queries are commendable. The primary area for improvement and continued vigilance lies in addressing the identified unsanitized path flow to completely eliminate potential security risks.

Key Concerns

  • Flow with unsanitized path
Vulnerabilities
None known

RY Toolkit Security Vulnerabilities

No known vulnerabilities — this is a good sign.
Code Analysis
Analyzed Mar 16, 2026

RY Toolkit Code Analysis

Dangerous Functions
0
Raw SQL Queries
8
14 prepared
Unescaped Output
8
180 escaped
Nonce Checks
11
Capability Checks
9
File Operations
7
External Requests
0
Bundled Libraries
0

SQL Query Safety

64% prepared22 total queries

Output Escaping

96% escaped188 total outputs
Data Flows
1 unsanitized

Data Flow Analysis

3 flows1 with unsanitized paths
<post-type> (admin\page\post-type.php:0)
Source (user input) Sink (dangerous op) Sanitizer Transform Unsanitized Sanitized
Attack Surface

RY Toolkit Attack Surface

Entry Points0
Unprotected0
WordPress Hooks 61
actionload-options.phpadmin\admin.php:44
actionload-options-media.phpadmin\admin.php:45
actionall_admin_noticesadmin\admin.php:47
actionadmin_initadmin\admin.php:49
actionadmin_initadmin\admin.php:50
actionadmin_enqueue_scriptsadmin\admin.php:51
actionadmin_menuadmin\admin.php:53
filterallowed_optionsadmin\options.php:19
filterry-toolkit/menu_listadmin\page\cron.php:11
actionadmin_post_ry-toolkit-actionadmin\page\cron.php:12
actionry-toolkit/add_page-ry-toolkit-cronadmin\page\cron.php:13
filterset_screen_option_ry_toolkit_cron_event_per_pageadmin\page\cron.php:37
filtercron_requestadmin\page\cron.php:121
filterry-toolkit/menu_listadmin\page\opcache.php:10
filteradmin_post_ry-toolkit-actionadmin\page\opcache.php:11
filterry-toolkit/menu_listadmin\page\options.php:9
filterry-toolkit/menu_listadmin\page\post-type.php:11
actionry-toolkit/add_page-ry-toolkit-posttypeadmin\page\post-type.php:12
filterset_screen_option_ry_toolkit_post_type_per_pageadmin\page\post-type.php:50
filterry-toolkit/menu_listadmin\page\tools.php:11
actionadmin_post_ry-toolkit-actionadmin\page\tools.php:12
filternetwork_admin_plugin_action_linksadmin\plugins.php:10
filterplugin_action_linksadmin\plugins.php:11
actionadmin_post_ry-toolkit-actionadmin\plugins.php:13
filtermanage_pages_columnsadmin\post.php:19
filtermanage_posts_columnsadmin\post.php:20
filtermanage_pages_custom_columnadmin\post.php:22
filtermanage_posts_custom_columnadmin\post.php:23
filterdebug_informationadmin\site-health.php:19
filterpre_get_ready_cron_jobsincludes\cron.php:19
filterget_the_generator_htmlincludes\frontend.php:20
filterget_the_generator_xhtmlincludes\frontend.php:21
filterget_the_generator_commentincludes\frontend.php:22
filterget_the_generator_atomincludes\frontend.php:23
filterget_the_generator_rss2includes\frontend.php:24
filterget_the_generator_rdfincludes\frontend.php:25
filterget_the_generator_exportincludes\frontend.php:26
filterfeed_links_show_posts_feedincludes\frontend.php:54
filterfeed_links_show_comments_feedincludes\frontend.php:57
filterfeed_links_extra_show_post_comments_feedincludes\frontend.php:60
filterfeed_links_extra_show_post_type_archive_feedincludes\frontend.php:63
filterfeed_links_extra_show_category_feedincludes\frontend.php:66
filterfeed_links_extra_show_tag_feedincludes\frontend.php:69
filterfeed_links_extra_show_tax_feedincludes\frontend.php:72
filterfeed_links_extra_show_author_feedincludes\frontend.php:75
filtercomments_openincludes\frontend.php:90
filterpings_openincludes\frontend.php:94
actioninitincludes\main.php:32
actioninitincludes\main.php:33
filterwp_sitemaps_add_providerincludes\sitemaps.php:23
actionwp_sitemaps_initincludes\sitemaps.php:24
filterwp_sitemaps_max_urlsincludes\sitemaps.php:39
filterwp_sitemaps_post_typesincludes\sitemaps.php:41
filterwp_sitemaps_taxonomiesincludes\sitemaps.php:42
filterwp_sitemaps_posts_query_argsincludes\sitemaps.php:44
filterimage_size_names_chooseincludes\upload.php:19
filterbig_image_size_thresholdincludes\upload.php:20
filterintermediate_image_sizes_advancedincludes\upload.php:21
filtersanitize_file_nameincludes\upload.php:24
filterxmlrpc_enabledincludes\xmlrpc.php:21
filterwp_headersincludes\xmlrpc.php:24
Maintenance & Trust

RY Toolkit Maintenance & Trust

Maintenance Signals

WordPress version tested6.8.5
Last updatedDec 10, 2025
PHP min version7.4
Downloads4K

Community Trust

Rating0/100
Number of ratings0
Active installs20
Alternatives

RY Toolkit Alternatives

Hostinger Tools

Hostinger Tools

hostinger

A
99

Simplified WordPress management. Manage site info, maintenance, security, & redirects.

3.0M 1 CVE
Kirki Customizer Framework

Kirki Customizer Framework

kirki

A
100

The Ultimate Customizer Framework for WordPress Theme Developers

500K No CVEs
Admin and Site Enhancements (ASE)

Admin and Site Enhancements (ASE)

admin-site-enhancements

A
92

Duplicate post, post order, image resize, email via SMTP, admin menu editor, custom css / code, disable gutenberg and much more in a single plugin.

200K 7 CVEs
Show Current Template

Show Current Template

show-current-template

A
100

A WordPress plugin which shows the current template file name, the current theme name and included template files' name in the tool bar.

100K No CVEs
Gravity Booster – Styles & Layouts for Gravity Forms

Gravity Booster – Styles & Layouts for Gravity Forms

styles-and-layouts-for-gravity-forms

A
100

Gravity Booster - Styles and Layouts for Gravity Forms plugin lets you design and style Gravity Forms without CSS coding. You can also use it for addi &hellip;

40K No CVEs
Developer Profile

RY Toolkit Developer Profile

Richer Yang

5 plugins · 8K total installs

91
trust score
Avg Security Score
95/100
Avg Patch Time
30 days
View full developer profile
Detection Fingerprints

How We Detect RY Toolkit

Patterns used to identify this plugin on WordPress sites during automated security audits and web crawling.

Asset Fingerprints

Asset Paths
/wp-content/plugins/ry-toolkit/assets/admin/main.css/wp-content/plugins/ry-toolkit/assets/admin/options.js/wp-content/plugins/ry-toolkit/assets/admin/tools.js
Script Paths
/wp-content/plugins/ry-toolkit/assets/admin/options.js/wp-content/plugins/ry-toolkit/assets/admin/tools.js
Version Parameters
ry-toolkit/assets/admin/main.asset.php?ver=ry-toolkit/assets/admin/options.asset.php?ver=ry-toolkit/assets/admin/tools.asset.php?ver=

HTML / DOM Fingerprints

CSS Classes
notice-ry-toolkit-admin
Data Attributes
data-ry-toolkit-pagedata-ry-toolkit-action
JS Globals
RY_Toolkit_Admin
FAQ

Frequently Asked Questions about RY Toolkit