Does Semantic Tags have any unpatched vulnerabilities?

No. All known vulnerabilities in Semantic Tags have been patched as of the latest data update. Always keep the plugin updated to the latest version.

Is Semantic Tags compatible with WordPress 3.9.40?

According to WordPress.org data, Semantic Tags 1.2 has been tested up to WordPress 3.9.40. Check the plugin's changelog for the latest compatibility information.

How often is Semantic Tags updated?

Semantic Tags was last updated on May 21, 2014. Frequent updates are generally a positive security signal.

What is Semantic Tags's security score?

Semantic Tags has a WP-Safety security score of 85/100. This score is computed from CVE history, patch response time, developer trust signals, and plugin maintenance activity.

Semantic Tags Security & Risk Analysis

wordpress.org/plugins/semantic-tags

Semantic Tags plugin provides you everything you need to create and semantically markup your Tags.

10 active installs v1.2 PHP + WP 3.0+ Updated May 21, 2014

semanticsemantic-webtagtagging

A · Safe

CVEs total0

Unpatched0

Last CVENever

Download

Safety Verdict

Is Semantic Tags Safe to Use in 2026?

Generally Safe

Score 85/100

Semantic Tags has no known CVEs and is actively maintained. It's a solid choice for most WordPress installations.

No known CVEs Updated 11yr ago

Risk Assessment

The "semantic-tags" v1.2 plugin exhibits a generally good security posture based on the provided static analysis and vulnerability history. The absence of any known CVEs and a lack of critical or high-severity findings in taint analysis are strong indicators of a well-maintained and secure codebase. The plugin also demonstrates good practices by utilizing prepared statements for all SQL queries and having a limited attack surface. However, there are a few areas of concern that prevent a perfect score. The most significant weakness identified is the low percentage of properly escaped output (42%). This suggests a substantial risk of Cross-Site Scripting (XSS) vulnerabilities, as user-supplied data is likely being rendered directly to the browser without adequate sanitization. Additionally, the complete absence of nonce checks across all entry points, including the single shortcode, is a significant oversight. While the attack surface is currently small, this lack of nonce protection makes it susceptible to Cross-Site Request Forgery (CSRF) attacks if the shortcode handles any sensitive actions. Despite these identified weaknesses, the plugin's track record of no past vulnerabilities and adherence to secure coding practices in other areas (SQL, file operations, external requests) are positive attributes.

Key Concerns

Significant unescaped output detected
Missing nonce checks on all entry points

Vulnerabilities

None known

Semantic Tags Security Vulnerabilities

No known vulnerabilities — this is a good sign.

Code Analysis

Analyzed Mar 16, 2026

Semantic Tags Code Analysis

Dangerous Functions

Raw SQL Queries

0 prepared

Unescaped Output

22 escaped

Nonce Checks

Capability Checks

File Operations

External Requests

Bundled Libraries

Output Escaping

42% escaped52 total outputs

Attack Surface

Semantic Tags Attack Surface

Entry Points1

Unprotected0

Shortcodes 1

[semantic_tags] classes\ST_Taxonomy.php:53

WordPress Hooks 12

actionadmin_initclasses\ST_settings.php:15

actionadmin_menuclasses\ST_settings.php:16

actioninitclasses\ST_Taxonomy.php:51

actionsemantictags_add_form_fieldsclasses\ST_Taxonomy.php:128

actionsemantictags_edit_form_fieldsclasses\ST_Taxonomy.php:129

actionedited_semantictagsclasses\ST_Taxonomy.php:130

actioncreate_semantictagsclasses\ST_Taxonomy.php:131

actioninitSemantic-Tags.php:99

actionwp_enqueue_scriptsSemantic-Tags.php:111

actionadmin_enqueue_scriptsSemantic-Tags.php:112

actionwidgets_initSemantic-Tags.php:114

actionadmin_footer-edit-tags.phpSemantic-Tags.php:118

Maintenance & Trust

Semantic Tags Maintenance & Trust

Maintenance Signals

WordPress version tested3.9.40

Last updatedMay 21, 2014

PHP min version

Downloads6K

Community Trust

Rating100/100

Number of ratings2

Active installs10

Alternatives

Semantic Tags Alternatives

YQL Auto Tagger

yql-auto-tagger

The plugin performs an analysis of your post text and suggests tags for you.

30 No CVEs

WP Calais Archive Tagger

wp-calais-archive-tagger

Goes through your archives and adds tags to your posts based on semantic analysis.

10 No CVEs

JSONLD Semantic Tags

jsonld-semantic-tags

Semantic Tags plugin provides you everything you need to create and semantically markup your Tags.

0 No CVEs

WP Calais Auto Tagger

calais-auto-tagger

The plugin performs semantic analysis of your posts to suggest tags using Open Calais.

40 1 unpatched

Laiser Tag

laiser-tag

Laiser Tag is an automated tagging plugin that uses the Open Calais API to generate tags for created content within a WordPress Site.

20 No CVEs

Developer Profile

Semantic Tags Developer Profile

Thanos Adamidis

1 plugin · 10 total installs

trust score

Avg Security Score

85/100

Avg Patch Time

30 days

View full developer profile

Detection Fingerprints

How We Detect Semantic Tags

Patterns used to identify this plugin on WordPress sites during automated security audits and web crawling.

Asset Fingerprints

HTML / DOM Fingerprints

CSS Classes

form-fielddescription

Data Attributes

name="term_meta[semantictag_term_meta_rel]"id="term_meta[semantictag_term_meta_rel]"name="term_meta[semantictag_term_meta_title]"id="term_meta[semantictag_term_meta_title]"name="term_meta[semantictag_term_meta_link]"id="term_meta[semantictag_term_meta_link]"+12 more

Shortcode Output

[semantic_tags

FAQ