Does Semrush Content Toolkit have any unpatched vulnerabilities?

No. All known vulnerabilities in Semrush Content Toolkit have been patched as of the latest data update. Always keep the plugin updated to the latest version.

Is Semrush Content Toolkit compatible with WordPress 6.8.5?

According to WordPress.org data, Semrush Content Toolkit 1.1.33 has been tested up to WordPress 6.8.5. Check the plugin's changelog for the latest compatibility information.

How often is Semrush Content Toolkit updated?

Semrush Content Toolkit was last updated on Jan 14, 2026. Frequent updates are generally a positive security signal.

What is Semrush Content Toolkit's security score?

Semrush Content Toolkit has a WP-Safety security score of 99/100. This score is computed from CVE history, patch response time, developer trust signals, and plugin maintenance activity.

Semrush Content Toolkit Security & Risk Analysis

wordpress.org/plugins/semrush-contentshake

Create SEO-friendly content that brings traffic.

2K active installs v1.1.33 PHP + WP 5.0+ Updated Jan 14, 2026

aicontent-marketingsemrushseo

A · Safe

CVEs total1

Unpatched0

Last CVEDec 15, 2025

Download

Safety Verdict

Is Semrush Content Toolkit Safe to Use in 2026?

Generally Safe

Score 99/100

Semrush Content Toolkit has a strong security track record. Known vulnerabilities have been patched promptly.

1 known CVELast CVE: Dec 15, 2025Updated 2mo ago

Risk Assessment

The semrush-contentshake plugin version 1.1.33 exhibits a strong security posture based on the static analysis. The absence of dangerous functions, raw SQL queries, improper output escaping, file operations, and external HTTP requests indicates diligent development practices. The presence of a nonce check and the lack of critical or high severity taint flows are positive indicators. However, the static analysis reveals no explicit capability checks, and the total entry points are reported as zero, which might suggest a limited functionality or reliance on other plugin mechanisms for interaction. The vulnerability history notes one past medium-severity CVE, specifically Cross-Site Request Forgery, which was last seen in 2025. While this vulnerability is not currently unpatched and the number of past vulnerabilities is low, it highlights a potential area of past weakness that warrants continued vigilance.

Key Concerns

One past medium CVE (CSRF)
No capability checks found

Vulnerabilities

Semrush Content Toolkit Security Vulnerabilities

CVEs by Year

1 CVE in 2025

2025

Patched Has unpatched

Severity Breakdown

Medium

1 total CVE

CVE-2025-68082medium · 4.3Cross-Site Request Forgery (CSRF)

Semrush Content Toolkit <= 1.1.32 - Cross-Site Request Forgery

Dec 15, 2025 Patched in 1.1.33 (32d)

Code Analysis

Analyzed Mar 16, 2026

Semrush Content Toolkit Code Analysis

Dangerous Functions

Raw SQL Queries

0 prepared

Unescaped Output

30 escaped

Nonce Checks

Capability Checks

File Operations

External Requests

Bundled Libraries

Output Escaping

100% escaped30 total outputs

Attack Surface

Semrush Content Toolkit Attack Surface

Entry Points0

Unprotected0

WordPress Hooks 6

actionplugins_loadedcontentshake.php:48

filterjwt_auth_default_whitelistcontentshake.php:50

filterapi_bearer_auth_unauthenticated_urlscontentshake.php:51

actionadmin_menucontentshake.php:53

actionadmin_initcontentshake.php:54

actionrest_api_initcontentshake.php:56

Maintenance & Trust

Semrush Content Toolkit Maintenance & Trust

Maintenance Signals

WordPress version tested6.8.5

Last updatedJan 14, 2026

PHP min version

Downloads20K

Community Trust

Rating52/100

Number of ratings5

Active installs2K

Alternatives

Semrush Content Toolkit Alternatives

ContentPen

contentpen

100

AI-Powered SEO Content Writing Assistant

200 No CVEs

ACME.BOT – AI SEO Writer & Content Generator

acme-bot-ai-seo-writer-content-generator

100

Run your WordPress blog on auto-pilot with ACME.BOT - automated AI SEO writer that creates deep-researched, publish-ready content with AI diagrams.

0 No CVEs

SEOPress – On-site SEO & Analytics

wp-seopress

SEOPress, a simple, fast and powerful all in one SEO plugin for WordPress. Rank higher in search engines, fully white label. Now with AI.

300K 14 CVEs

GetGenie – AI Content Writer with Keyword Research & SEO Tracking Tools

getgenie

GPT-4o powered AI content writer with 37+ templates, chatbot, AI image, NLP keyword research, SEO analysis for WordPress, Gutenberg & Elementor.

70K 4 CVEs

SEO Plugin by Squirrly SEO

squirrly-seo

Rank without begging Google. AI-powered SEO that actually helps you win. Trusted by rebels, creators, and pros in 150+ countries.

40K 14 CVEs

Developer Profile

Semrush Content Toolkit Developer Profile

SEMrush CY LTD

2 plugins · 12K total installs

trust score

Avg Security Score

100/100

Avg Patch Time

32 days

View full developer profile

Detection Fingerprints

How We Detect Semrush Content Toolkit

Patterns used to identify this plugin on WordPress sites during automated security audits and web crawling.

Asset Fingerprints

HTML / DOM Fingerprints

REST Endpoints

contentshake/v1/postscontentshake/v1/acceptedcontentshake/v1/decline

FAQ