QC SEO Help for llms.txt, AI Analytics, AI Content Writer, Subtitle to Article Security Review

Safety Verdict

Is QC SEO Help for llms.txt, AI Analytics, AI Content Writer, Subtitle to Article Safe to Use in 2026?

Use With Caution

Score 55/100

QC SEO Help for llms.txt, AI Analytics, AI Content Writer, Subtitle to Article has 2 unpatched vulnerabilities. Evaluate alternatives or apply available mitigations.

3 known CVEs 2 unpatched Last CVE: Apr 9, 2025Updated 28d ago

Risk Assessment

The "seo-help" v6.7.8 plugin presents a mixed security posture. While it demonstrates some good practices, such as a relatively high percentage of properly escaped outputs and a decent number of nonce and capability checks, significant concerns remain. The presence of two AJAX handlers without authentication checks directly exposes potential entry points for unauthorized actions. Furthermore, the taint analysis reveals two high-severity flows with unsanitized paths, indicating a risk of code injection or privilege escalation if these paths are exploited.

The plugin's vulnerability history is a major red flag. With three known CVEs, two of which are currently unpatched and classified as medium severity, it suggests a pattern of introducing exploitable weaknesses. The historical vulnerability types, including SSRF and Missing Authorization, align with some of the findings in the static analysis. The recent vulnerability date (2025-04-09) also indicates that these issues are not historical but recent and potentially ongoing.

In conclusion, "seo-help" v6.7.8 exhibits weaknesses that outweigh its strengths. The unpatched vulnerabilities and the critical findings from the taint analysis are substantial risks. While the percentage of prepared SQL statements and output escaping is commendable, it does not mitigate the immediate dangers posed by the identified security flaws. It is strongly recommended that users exercise extreme caution and consider alternative plugins until these issues are addressed.

Key Concerns

Unpatched CVEs
High severity taint flows with unsanitized paths
AJAX handlers without authentication checks
Vulnerability history includes SSRF and Missing Auth
Use of unserialize function
SQL queries with low prepared statement usage

Vulnerabilities

3

QC SEO Help for llms.txt, AI Analytics, AI Content Writer, Subtitle to Article Security Vulnerabilities

CVEs by Year

1 CVE in 2024

2024

2 CVEs in 2025 · unpatched

2025

Patched Has unpatched

Severity Breakdown

Medium

3

3 total CVEs

CVE-2025-32675medium · 5.5Server-Side Request Forgery (SSRF)

SEO Help <= 6.6.1 - Authenticated (Admin+) Server-Side Request Forgery

Apr 9, 2025Unpatched

CVE-2025-32244medium · 5.3Missing Authorization

SEO Help <= 6.6.1 - Missing Authorization

Apr 7, 2025Unpatched

CVE-2024-12156medium · 6.1Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting')

AI Content Writer, RSS Feed to Post, Autoblogging SEO Help <= 6.1.3 - Reflected Cross-Site Scripting

Dec 11, 2024 Patched in 6.1.4 (1d)

Code Analysis

Analyzed Mar 16, 2026

QC SEO Help for llms.txt, AI Analytics, AI Content Writer, Subtitle to Article Code Analysis

Dangerous Functions

3

Raw SQL Queries

35

10 prepared

Unescaped Output

191

922 escaped

Nonce Checks

37

Capability Checks

11

File Operations

22

External Requests

23

Bundled Libraries

1

Dangerous Functions Found

unserializeforeach(unserialize($qcld_seo_summary_post_type_data) as $post){inc\post-summarizer.php:113

unserializeforeach(unserialize($qcld_seo_summary_post_type_data) as $post){inc\post-summarizer.php:130

unserializeforeach(unserialize($qcld_seo_summary_post_type_data) as $post){inc\post-summarizer.php:144

Bundled Libraries

jQuery

SQL Query Safety

22% prepared45 total queries

Output Escaping

83% escaped1113 total outputs

Data Flows

3 unsanitized

Data Flow Analysis

25 flows3 with unsanitized paths

extra_tablenav (inc\ai-bot-tracker.php:334)

Source (user input) Sink (dangerous op) Sanitizer Transform Unsanitized Sanitized

Attack Surface

2 unprotected

QC SEO Help for llms.txt, AI Analytics, AI Content Writer, Subtitle to Article Attack Surface

Entry Points58

Unprotected2

AJAX Handlers 58

authwp_ajax_qcld_seo_help_goodbye_formclass-plugin-deactivate-feedback.php:62

authwp_ajax_save_llms_settingsinc\ai-llms-txt-generator.php:17

authwp_ajax_reset_llms_cacheinc\ai-llms-txt-generator.php:18

authwp_ajax_llms_generate_txtinc\ai-llms-txt-generator.php:79

authwp_ajax_llms_reset_proinc\ai-llms-txt-generator.php:186

noprivwp_ajax_qcld_seo_content_generateinc\qc-content-generator-page.php:170

authwp_ajax_qcld_seo_content_generateinc\qc-content-generator-page.php:171

authwp_ajax_qcld_linkbait_seo_tipsinc\qc-project-linkbait-ajax-seo.php:31

noprivwp_ajax_qcld_linkbait_seo_tipsinc\qc-project-linkbait-ajax-seo.php:32

authwp_ajax_qcldseohelp_keyword_suggestioninc\qc-project-linkbait-ajax-seo.php:85

noprivwp_ajax_qcldseohelp_keyword_suggestioninc\qc-project-linkbait-ajax-seo.php:86

authwp_ajax_qcld_linkbait_outline_datainc\qc-project-linkbait-ajax-seo.php:310

noprivwp_ajax_qcld_linkbait_outline_datainc\qc-project-linkbait-ajax-seo.php:311

authwp_ajax_open_save_settingsinc\qc-project-linkbait-ajax-seo.php:350

noprivwp_ajax_open_save_settingsinc\qc-project-linkbait-ajax-seo.php:351

authwp_ajax_gemini_save_settingsinc\qc-project-linkbait-ajax-seo.php:387

noprivwp_ajax_gemini_save_settingsinc\qc-project-linkbait-ajax-seo.php:388

authwp_ajax_qcld_seo_image_generateinc\qc-project-linkbait-ajax-seo.php:390

noprivwp_ajax_qcld_seo_image_generateinc\qc-project-linkbait-ajax-seo.php:391

authwp_ajax_qcld_seo_image_generate_url_functionsinc\qc-project-linkbait-ajax-seo.php:581

noprivwp_ajax_qcld_seo_image_generate_url_functionsinc\qc-project-linkbait-ajax-seo.php:582

authwp_ajax_qcld_linkbait_show_suggestioninc\qc-project-linkbait-ajax.php:112

noprivwp_ajax_qcld_linkbait_show_suggestioninc\qc-project-linkbait-ajax.php:113

authwp_ajax_qcld_linkbait_generate_suggestioninc\qc-project-linkbait-ajax.php:391

noprivwp_ajax_qcld_linkbait_generate_suggestioninc\qc-project-linkbait-ajax.php:392

authwp_ajax_qcld_seo_help_broken_link_checking_by_ajaxinc\qc-project-linkbait-ajax.php:400

noprivwp_ajax_qcld_seo_help_broken_link_checking_by_ajaxinc\qc-project-linkbait-ajax.php:401

authwp_ajax_qcld_seo_help_broken_sld_link_checking_by_ajaxinc\qc-project-linkbait-ajax.php:477

noprivwp_ajax_qcld_seo_help_broken_sld_link_checking_by_ajaxinc\qc-project-linkbait-ajax.php:478

authwp_ajax_qcldseohelp_keyword_suggestion_contentinc\qc-project-linkbait-ajax.php:555

noprivwp_ajax_qcldseohelp_keyword_suggestion_contentinc\qc-project-linkbait-ajax.php:556

authwp_ajax_qcldseohelp_keyword_suggestion_taginc\qc-project-linkbait-ajax.php:752

noprivwp_ajax_qcldseohelp_keyword_suggestion_taginc\qc-project-linkbait-ajax.php:753

authwp_ajax_qcld_linkbait_add_ontaginc\qc-project-linkbait-ajax.php:862

authwp_ajax_qcld_seo_save_draft_post_extrainc\qc-project-linkbait-ajax.php:880

noprivwp_ajax_qcld_seo_save_draft_post_extrainc\qc-project-linkbait-ajax.php:881

authwp_ajax_qcld_youtube_subtitle_generate_by_ajaxinc\youtube_subtitle_to_content.php:249

authwp_ajax_qcld_youtube_subtitle_generate_by_ajaxinc\youtube_subtitle_to_content.php:250

authwp_ajax_qcld_wp_seo_gc_client_downloadinc\youtube_subtitle_to_vendor.php:165

noprivwp_ajax_qcld_wp_seo_gc_client_downloadinc\youtube_subtitle_to_vendor.php:166

authwp_ajax_qcld_seohelp_suggestion_titleqc-project-metaboxes.php:200

noprivwp_ajax_qcld_seohelp_suggestion_titleqc-project-metaboxes.php:201

authwp_ajax_qcld_seohelp_suggestion_excerptqc-project-metaboxes.php:300

noprivwp_ajax_qcld_seohelp_suggestion_excerptqc-project-metaboxes.php:301

authwp_ajax_qcld_seohelp_suggestion_excerpt_saveqc-project-metaboxes.php:403

noprivwp_ajax_qcld_seohelp_suggestion_excerpt_saveqc-project-metaboxes.php:404

authwp_ajax_qcld_seohelp_translate_postqc-project-metaboxes.php:442

noprivwp_ajax_qcld_seohelp_translate_postqc-project-metaboxes.php:443

authwp_ajax_qcld_seohelp_grammer_checkerqc-project-metaboxes.php:546

noprivwp_ajax_qcld_seohelp_grammer_checkerqc-project-metaboxes.php:547

authwp_ajax_qcld_seo_process_qc_promo_formqc-support-promo-page\class-qc-support-promo-page.php:101

authwp_ajax_qcld_seo_recommend_support_function_ajaxqc-support-promo-page\qc-clr-recommendbot-support-plugin.php:7

noprivwp_ajax_qcld_rss_save_settingsrss\qcld-rss-functions.php:551

authwp_ajax_qcld_rss_save_settingsrss\qcld-rss-functions.php:552

authwp_ajax_qcld_seo_help_rss_post_statusrss\qcld-rss.php:667

noprivwp_ajax_qcld_seo_help_rss_post_statusrss\qcld-rss.php:668

authwp_ajax_qcld_seo_help_rss_run_now_ajaxrss\qcld-rss.php:698

noprivwp_ajax_qcld_seo_help_rss_run_now_ajaxrss\qcld-rss.php:699

WordPress Hooks 44

actionadmin_footer-plugins.phpclass-plugin-deactivate-feedback.php:61

filterwp_mail_content_typeclass-plugin-deactivate-feedback.php:97

actionadmin_headclass-qcld-free-plugin-upgrade-notice.php:37

actionplugin_row_metaclass-qcld-free-plugin-upgrade-notice.php:118

actionadmin_menuclass-qcld-free-plugin-upgrade-notice.php:158

actionadmin_enqueue_scriptsinc\ai-bot-tracker.php:22

actiontemplate_redirectinc\ai-bot-tracker.php:65

actionadmin_initinc\ai-bot-tracker.php:659

actioninitinc\ai-llms-txt-generator.php:12

filterquery_varsinc\ai-llms-txt-generator.php:13

actiontemplate_redirectinc\ai-llms-txt-generator.php:14

filterqcld_seo_get_prompt_titleinc\qc-content-generator-page.php:399

filterqcld_ai_article_heading_img_urlinc\qc-content-generator-page.php:707

filterqcld_seo_get_prompt_image_urlinc\qc-project-linkbait-ajax-seo.php:497

actioninitinc\qc-project-linkbait-ajax.php:860

filterot_show_pagesinc\qc-project-linkbait-framework.php:3

filterot_show_new_layoutinc\qc-project-linkbait-framework.php:4

filterot_header_version_textinc\qc-project-linkbait-framework.php:5

actioninitinc\qc-project-linkbait-framework.php:19

actionadmin_enqueue_scriptsqc-project-linkbait-assets.php:62

actioninitqc-project-linkbait-main.php:64

actionadmin_menuqc-project-linkbait-main.php:236

actionadmin_footerqc-project-linkbait-main.php:242

actioninitqc-project-linkbait-main.php:1496

actionactivated_pluginqc-project-linkbait-main.php:1545

actionwp_headqc-project-linkbait-main.php:1550

actionadmin_noticesqc-project-linkbait-main.php:2413

actionadd_meta_boxesqc-project-metaboxes.php:5

actionadd_meta_boxesqc-project-metaboxes.php:84

actionadmin_enqueue_scriptsqc-support-promo-page\class-qc-support-promo-page.php:47

actioninitrss\qcld-rss-cron-job.php:9

actionqcld_seo_help_cronrss\qcld-rss-cron-job.php:10

actionqcld_seo_help_run_cronrss\qcld-rss-cron-job.php:43

filterqcld_seo_help_get_feed_arrayrss\qcld-rss-functions.php:7

filterqcld_seo_help_item_filterrss\qcld-rss-functions.php:443

actioninitrss\qcld-rss.php:271

filterpost_row_actionsrss\qcld-rss.php:274

actionadd_meta_boxesrss\qcld-rss.php:311

filtermanage_qcld_rss_imports_posts_columnsrss\qcld-rss.php:597

actionmanage_qcld_rss_imports_posts_custom_columnrss\qcld-rss.php:598

actionsave_postrss\qcld-rss.php:602

filterwp_feed_cache_transient_lifetimerss\qcld-rss.php:1687

actionshutdownrss\qcld-rss.php:1740

filterqcld_seo_get_post_content_generaterss\qcld-rss.php:1885

Scheduled Events 1

qcld_seo_help_run_cron

Maintenance & Trust

QC SEO Help for llms.txt, AI Analytics, AI Content Writer, Subtitle to Article Maintenance & Trust

Maintenance Signals

WordPress version tested6.9.4

Last updatedMar 6, 2026

PHP min version5.6

Downloads16K

Community Trust

Rating0/100

Number of ratings0

Active installs50

Alternatives

QC SEO Help for llms.txt, AI Analytics, AI Content Writer, Subtitle to Article Alternatives

Arvow AI SEO Writer

journalist-ai

A

100

The AI SEO writer that generates human-like content and auto-publishes it to your WordPress blog.

900 No CVEs

Spawnster: AI Blog Writer and Instant Site Generator for Publishing Articles on a Schedule

spawnster-ai-content-generator

A

100

The Best AI Blog Writer for Automatically Generating SEO-Friendly Blog Articles on a Schedule

300 No CVEs

Opace AI Scribe: SEO Content Creator & Humaizer for OpenAI & Anthropic

ai-scribe-the-chatgpt-powered-seo-content-creation-wizard

A

98

AI SEO content creator and humanizer for OpenAI and Anthropic models. SEO articles with GPT-5, Sonnet 4.5 & 4o images. Works with Yoast & Rank Math.

200 3 CVEs

Emplibot – AI Content Writer with Keyword Research, Infographics, and Linking | SEO Optimized | Fully Automated

emplibot

A

99

Automated keyword research, automated blogging, with internal and external links, engaging infographics, unique featured images, and more.

100 1 CVE

WebPlanetSoft AI Content Gen – Google Gemini AI Writer, SEO Blog Post & Content Generator

webplanet-ai-content-gen

A

100

Create high-quality SEO content with AI. The ultimate AI writer for manual blog posts, smart previews, and auto-categories using Google Gemini.

30 No CVEs

Developer Profile

QC SEO Help for llms.txt, AI Analytics, AI Content Writer, Subtitle to Article Developer Profile

QuantumCloud

29 plugins · 26K total installs

76

trust score

Avg Security Score

96/100

Avg Patch Time

255 days

View full developer profile

Detection Fingerprints

How We Detect QC SEO Help for llms.txt, AI Analytics, AI Content Writer, Subtitle to Article

Patterns used to identify this plugin on WordPress sites during automated security audits and web crawling.

Asset Fingerprints

Asset Paths

/wp-content/plugins/seo-help/assets/css/custom.css/wp-content/plugins/seo-help/assets/css/global.css/wp-content/plugins/seo-help/assets/css/style.css/wp-content/plugins/seo-help/assets/js/custom.js/wp-content/plugins/seo-help/assets/js/global.js/wp-content/plugins/seo-help/assets/js/plugin.js/wp-content/plugins/seo-help/assets/js/script.js

Generator Patterns

AI content generator and autoblogging SEO Help

Script Paths

/wp-content/plugins/seo-help/assets/js/custom.js/wp-content/plugins/seo-help/assets/js/global.js/wp-content/plugins/seo-help/assets/js/plugin.js/wp-content/plugins/seo-help/assets/js/script.js

Version Parameters

seo-help/assets/css/custom.css?ver=seo-help/assets/css/global.css?ver=seo-help/assets/css/style.css?ver=seo-help/assets/js/custom.js?ver=seo-help/assets/js/global.js?ver=seo-help/assets/js/plugin.js?ver=seo-help/assets/js/script.js?ver=

HTML / DOM Fingerprints

CSS Classes

qcld_seohelp_conten

Data Attributes

data-option-value

JS Globals

qcld_linkbait_urlqcld_linkbait_img_urlqcld_linkbait_assets_urlqcld_Linkbait_dir1qcld_Linkbait_inc_dir1QCLD_SEO_ALLOW_HTTPS+4 more

FAQ

QC SEO Help for llms.txt, AI Analytics, AI Content Writer, Subtitle to Article Security & Risk Analysis

Is QC SEO Help for llms.txt, AI Analytics, AI Content Writer, Subtitle to Article Safe to Use in 2026?

Use With Caution

Key Concerns

QC SEO Help for llms.txt, AI Analytics, AI Content Writer, Subtitle to Article Security Vulnerabilities

CVEs by Year

Severity Breakdown

QC SEO Help for llms.txt, AI Analytics, AI Content Writer, Subtitle to Article Code Analysis

Dangerous Functions Found

Bundled Libraries

SQL Query Safety

Output Escaping

Data Flow Analysis

QC SEO Help for llms.txt, AI Analytics, AI Content Writer, Subtitle to Article Attack Surface

AJAX Handlers 58

Scheduled Events 1

QC SEO Help for llms.txt, AI Analytics, AI Content Writer, Subtitle to Article Maintenance & Trust

Maintenance Signals

Community Trust

QC SEO Help for llms.txt, AI Analytics, AI Content Writer, Subtitle to Article Alternatives

Arvow AI SEO Writer

Spawnster: AI Blog Writer and Instant Site Generator for Publishing Articles on a Schedule

Opace AI Scribe: SEO Content Creator & Humaizer for OpenAI & Anthropic

Emplibot – AI Content Writer with Keyword Research, Infographics, and Linking | SEO Optimized | Fully Automated

WebPlanetSoft AI Content Gen – Google Gemini AI Writer, SEO Blog Post & Content Generator

QC SEO Help for llms.txt, AI Analytics, AI Content Writer, Subtitle to Article Developer Profile

How We Detect QC SEO Help for llms.txt, AI Analytics, AI Content Writer, Subtitle to Article

Asset Fingerprints

HTML / DOM Fingerprints

Frequently Asked Questions about QC SEO Help for llms.txt, AI Analytics, AI Content Writer, Subtitle to Article