WP-Safety

SchemaSense – Smart Structured Data Security & Risk Analysis

wordpress.org/plugins/schemasense-smart-structured-data

Auto-detects FAQ content and generates valid JSON-LD schema for LLMs, GEO (Generative Engine Optimization), and SEO.

300 active installs v1.1.5 PHP 7.4+ WP 5.0+ Updated Jan 21, 2026
faqjson-ldschemaseostructured-data
100
A · Safe
CVEs total0
Unpatched0
Last CVENever
Download
Safety Verdict

Is SchemaSense – Smart Structured Data Safe to Use in 2026?

Generally Safe

Score 100/100

SchemaSense – Smart Structured Data has no known CVEs and is actively maintained. It's a solid choice for most WordPress installations.

No known CVEs Updated 2mo ago
Risk Assessment

The "schemasense-smart-structured-data" plugin v1.1.5 demonstrates a generally strong security posture, with excellent adherence to WordPress best practices. The static analysis reveals no immediate critical vulnerabilities such as dangerous functions, file operations, or external HTTP requests. Notably, the plugin implements a significant number of nonce and capability checks, which is a positive indicator of security awareness. The SQL query implementation is also robust, with a high percentage utilizing prepared statements, minimizing the risk of SQL injection. The absence of known CVEs and a clean vulnerability history further bolster its perceived security. However, the taint analysis did reveal two flows with unsanitized paths, categorized as high severity. While the plugin has an otherwise good record, these specific taint flows represent a potential area of concern that warrants further investigation and remediation to ensure the overall security of the plugin.

Key Concerns

  • High severity unsanitized taint flows detected
Vulnerabilities
None known

SchemaSense – Smart Structured Data Security Vulnerabilities

No known vulnerabilities — this is a good sign.
Code Analysis
Analyzed Mar 16, 2026

SchemaSense – Smart Structured Data Code Analysis

Dangerous Functions
0
Raw SQL Queries
2
9 prepared
Unescaped Output
1
5 escaped
Nonce Checks
3
Capability Checks
5
File Operations
0
External Requests
0
Bundled Libraries
0

SQL Query Safety

82% prepared11 total queries

Output Escaping

83% escaped6 total outputs
Data Flows
2 unsanitized

Data Flow Analysis

2 flows2 with unsanitized paths
start_batch_scan (includes\class-schsmst-batch-processor.php:58)
Source (user input) Sink (dangerous op) Sanitizer Transform Unsanitized Sanitized
Attack Surface

SchemaSense – Smart Structured Data Attack Surface

Entry Points3
Unprotected0

AJAX Handlers 3

authwp_ajax_schsmst_start_batch_scanincludes\class-schsmst-batch-processor.php:50
authwp_ajax_schsmst_process_batchincludes\class-schsmst-batch-processor.php:51
authwp_ajax_schsmst_get_batch_statusincludes\class-schsmst-batch-processor.php:52
WordPress Hooks 7
actionwp_headincludes\class-schsmst-frontend.php:43
actionwp_enqueue_scriptsincludes\class-schsmst-frontend.php:44
filterthe_contentincludes\class-schsmst-frontend.php:45
actionsave_postincludes\class-schsmst-post-handler.php:17
actionadmin_menuincludes\class-schsmst-settings.php:16
actionadmin_initincludes\class-schsmst-settings.php:17
actionadmin_enqueue_scriptsincludes\class-schsmst-settings.php:18
Maintenance & Trust

SchemaSense – Smart Structured Data Maintenance & Trust

Maintenance Signals

WordPress version tested6.9.4
Last updatedJan 21, 2026
PHP min version7.4
Downloads227

Community Trust

Rating0/100
Number of ratings0
Active installs300
Alternatives

SchemaSense – Smart Structured Data Alternatives

Local Business Schema (JSON-LD) Lite

Local Business Schema (JSON-LD) Lite

wpspeed-localbusiness-schema

A
100

Boost Local SEO with Smart Local Business Schema JSON-LD

3K No CVEs
FAQ Schema for Elementor

FAQ Schema for Elementor

faq-schema-for-elementor

A
85

Adds an Elementor widget that inserts FAQ schema (structured data) in JSON-LD format.

900 No CVEs
Schema Scalpel

Schema Scalpel

schema-scalpel

A
99

Add custom JSON-LD schema markup per post or page with a powerful new editor metabox – precise, fast, and SEO-boosting.

90 1 CVE
FAQ Schema Shortcode

FAQ Schema Shortcode

faq-schema-shortcode

A
100

Quickly add FAQ sections compatible with structured data to your site using simple shortcodes, improving your SEO.

80 No CVEs
AEO Engine

AEO Engine

alquingadev-aeo-schema

A
100

Automatically generates Schema.org JSON-LD for Answer Engine Optimization. Boost visibility in AI search engines.

30 No CVEs
Developer Profile

SchemaSense – Smart Structured Data Developer Profile

Fabio Biocchetti

1 plugin · 300 total installs

94
trust score
Avg Security Score
100/100
Avg Patch Time
30 days
View full developer profile
Detection Fingerprints

How We Detect SchemaSense – Smart Structured Data

Patterns used to identify this plugin on WordPress sites during automated security audits and web crawling.

Asset Fingerprints

Asset Paths
/wp-content/plugins/schemasense-smart-structured-data/assets/css/frontend.css/wp-content/plugins/schemasense-smart-structured-data/assets/js/frontend.js
Script Paths
/wp-content/plugins/schemasense-smart-structured-data/assets/js/frontend.js
Version Parameters
schemasense-smart-structured-data/assets/css/frontend.css?ver=schemasense-smart-structured-data/assets/js/frontend.js?ver=

HTML / DOM Fingerprints

CSS Classes
schsmst-question-wrapperschsmst-question-headerschsmst-toggle
Data Attributes
data-schsmst-question
FAQ

Frequently Asked Questions about SchemaSense – Smart Structured Data