WP-Safety

Praison AI SEO Security & Risk Analysis

wordpress.org/plugins/seo-wordpress

AI-powered SEO optimization for WordPress. Generate meta descriptions, titles, schema markup, and comprehensive SEO analysis using OpenAI.

1K active installs v5.0.6 PHP 7.4+ WP 5.0+ Updated Dec 3, 2025
aiopenaischemaseositemap
99
A · Safe
CVEs total1
Unpatched0
Last CVEMay 20, 2024
Plugin page Download
Safety Verdict

Is Praison AI SEO Safe to Use in 2026?

Generally Safe

Score 99/100

Praison AI SEO has a strong security track record. Known vulnerabilities have been patched promptly. It's a solid choice for most WordPress installations.

1 known CVELast CVE: May 20, 2024Updated 5mo ago
Risk Assessment

The 'seo-wordpress' plugin v5.0.6 presents a mixed security posture, with several positive indicators but notable areas of concern. On the positive side, the plugin demonstrates a strong commitment to output escaping, with 95% of outputs properly handled, and includes nonce and capability checks for most of its entry points. The absence of critical or high-severity taint flows is also a significant strength.

However, the plugin's attack surface is substantial, with 38 AJAX handlers, and critically, two of these lack any authentication checks. This opens a potential pathway for unauthorized actions. While the vulnerability history shows no currently unpatched CVEs, the presence of a past medium-severity Cross-Site Scripting (XSS) vulnerability, even if resolved, suggests that input sanitization might require continued vigilance. The use of a dangerous function ('preg_replace(/e)') also warrants careful review.

Overall, while the plugin has made strides in security, the unprotected AJAX handlers represent a clear and immediate risk that needs to be addressed. The past XSS vulnerability, though patched, highlights the importance of robust input validation. The plugin is generally well-implemented with many security best practices in place, but these specific vulnerabilities prevent it from achieving a higher security rating.

Key Concerns

  • Unprotected AJAX handlers
  • Use of dangerous function (preg_replace(/e))
  • Past medium severity CVE
Vulnerabilities
1 published

Praison AI SEO Security Vulnerabilities

CVEs by Year

1 CVE in 2024
2024
Patched Has unpatched

Severity Breakdown

Medium
1

1 total CVE

CVE-2024-34801medium · 6.4Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting')

Praison SEO WordPress <= 4.0.15 - Authenticated (Author+) Stored Cross-Site Scripting

May 20, 2024 Patched in 4.0.16 (529d)
Version History

Praison AI SEO Release Timeline

v5.0.6Current
v5.0.5
v5.0.4
v5.0.3
v5.0.2
v5.0.1
v5.0.0
v4.0.18
v4.0.17
v4.0.16
v4.0.151 CVE
CVE-2024-34801
v4.0.41 CVE
CVE-2024-34801
v3.0.11 CVE
CVE-2024-34801
v3.01 CVE
CVE-2024-34801
v2.01 CVE
CVE-2024-34801
v1.0.71 CVE
CVE-2024-34801
Code Analysis
Analyzed Mar 16, 2026

Praison AI SEO Code Analysis

Dangerous Functions
1
Raw SQL Queries
30
30 prepared
Unescaped Output
22
437 escaped
Nonce Checks
39
Capability Checks
45
File Operations
15
External Requests
7
Bundled Libraries
0

Dangerous Functions Found

preg_replace(/e)preg_replace('/eincludes\class-aiseo-helpers.php:264

SQL Query Safety

50% prepared60 total queries

Output Escaping

95% escaped459 total outputs
Data Flows · Security
All sanitized

Data Flow Analysis

3 flows
ajax_save_cpt_settings (admin\class-aiseo-admin.php:1132)
Source (user input) Sink (dangerous op) Sanitizer Transform Unsanitized Sanitized
Attack Surface
2 unprotected

Praison AI SEO Attack Surface

Entry Points39
Unprotected2

AJAX Handlers 38

authwp_ajax_aiseo_admin_actionadmin\class-aiseo-admin.php:45
authwp_ajax_aiseo_create_postadmin\class-aiseo-admin.php:48
authwp_ajax_aiseo_generate_titleadmin\class-aiseo-admin.php:49
authwp_ajax_aiseo_generate_descriptionadmin\class-aiseo-admin.php:50
authwp_ajax_aiseo_generate_keywordadmin\class-aiseo-admin.php:51
authwp_ajax_aiseo_analyze_contentadmin\class-aiseo-admin.php:54
authwp_ajax_aiseo_add_redirectadmin\class-aiseo-admin.php:57
authwp_ajax_aiseo_list_redirectsadmin\class-aiseo-admin.php:58
authwp_ajax_aiseo_delete_redirectadmin\class-aiseo-admin.php:59
authwp_ajax_aiseo_optimize_permalinksadmin\class-aiseo-admin.php:60
authwp_ajax_aiseo_regenerate_sitemapadmin\class-aiseo-admin.php:61
authwp_ajax_aiseo_generate_image_altadmin\class-aiseo-admin.php:62
authwp_ajax_aiseo_find_missing_altadmin\class-aiseo-admin.php:63
authwp_ajax_aiseo_generate_single_altadmin\class-aiseo-admin.php:64
authwp_ajax_aiseo_save_cpt_settingsadmin\class-aiseo-admin.php:67
authwp_ajax_aiseo_generate_reportadmin\class-aiseo-admin.php:68
authwp_ajax_aiseo_keyword_researchadmin\class-aiseo-admin.php:69
authwp_ajax_aiseo_generate_briefadmin\class-aiseo-admin.php:70
authwp_ajax_aiseo_rewrite_contentadmin\class-aiseo-admin.php:73
authwp_ajax_aiseo_content_suggestionsadmin\class-aiseo-admin.php:74
authwp_ajax_aiseo_generate_outlineadmin\class-aiseo-admin.php:75
authwp_ajax_aiseo_generate_faqadmin\class-aiseo-admin.php:76
authwp_ajax_aiseo_internal_linkingadmin\class-aiseo-admin.php:79
authwp_ajax_aiseo_meta_variationsadmin\class-aiseo-admin.php:80
authwp_ajax_aiseo_refresh_nonceadmin\class-aiseo-admin.php:83
authwp_ajax_aiseo_improve_seo_metaadmin\class-aiseo-admin.php:86
authwp_ajax_aiseo_improve_content_blockadmin\class-aiseo-admin.php:87
authwp_ajax_aiseo_import_seoadmin\class-aiseo-admin.php:90
authwp_ajax_aiseo_export_seoadmin\class-aiseo-admin.php:91
authwp_ajax_aiseo_save_titleadmin\class-aiseo-admin.php:92
authwp_ajax_aiseo_save_descriptionadmin\class-aiseo-admin.php:93
authwp_ajax_aiseo_generate_single_altincludes\class-aiseo-image-seo.php:26
authwp_ajax_aiseo_bulk_generate_altincludes\class-aiseo-image-seo.php:27
authwp_ajax_aiseo_get_missing_altincludes\class-aiseo-image-seo.php:28
authwp_ajax_aiseo_generate_keywordincludes\class-aiseo-metabox.php:32
authwp_ajax_aiseo_generate_titleincludes\class-aiseo-metabox.php:33
authwp_ajax_aiseo_generate_descriptionincludes\class-aiseo-metabox.php:34
authwp_ajax_aiseo_analyze_contentincludes\class-aiseo-metabox.php:35

Shortcodes 1

[aiseo_breadcrumbs] includes\class-aiseo-breadcrumbs.php:43
WordPress Hooks 45
actionadmin_initadmin\class-aiseo-admin.php:37
filtercheck_ajax_refereradmin\class-aiseo-admin.php:40
actionadmin_menuadmin\class-aiseo-admin.php:42
actionadmin_enqueue_scriptsadmin\class-aiseo-admin.php:43
actionenqueue_block_editor_assetsadmin\class-aiseo-admin.php:44
actionwp_headincludes\class-aiseo-analytics.php:32
actionaiseo_breadcrumbsincludes\class-aiseo-breadcrumbs.php:46
actioninitincludes\class-aiseo-core.php:127
filtercron_schedulesincludes\class-aiseo-core.php:130
actionrest_api_initincludes\class-aiseo-core.php:133
actionwp_headincludes\class-aiseo-homepage-seo.php:33
filterpre_get_document_titleincludes\class-aiseo-homepage-seo.php:36
filterdocument_title_partsincludes\class-aiseo-homepage-seo.php:37
actionadmin_menuincludes\class-aiseo-image-seo.php:22
actionadmin_enqueue_scriptsincludes\class-aiseo-image-seo.php:23
actionwp_headincludes\class-aiseo-meta.php:23
filterpre_get_document_titleincludes\class-aiseo-meta.php:26
filterwp_titleincludes\class-aiseo-meta.php:27
actionadd_meta_boxesincludes\class-aiseo-metabox.php:23
actionsave_postincludes\class-aiseo-metabox.php:26
actionadmin_enqueue_scriptsincludes\class-aiseo-metabox.php:29
actionwp_headincludes\class-aiseo-robots.php:54
filterthe_contentincludes\class-aiseo-robots.php:57
filtercomment_textincludes\class-aiseo-robots.php:58
filterthe_excerpt_rssincludes\class-aiseo-rss.php:57
filterthe_content_feedincludes\class-aiseo-rss.php:58
filterthe_excerpt_rssincludes\class-aiseo-rss.php:61
filterthe_content_feedincludes\class-aiseo-rss.php:62
filterwp_sitemaps_enabledincludes\class-aiseo-sitemap.php:33
filterredirect_canonicalincludes\class-aiseo-sitemap.php:36
actioninitincludes\class-aiseo-sitemap.php:39
actiontemplate_redirectincludes\class-aiseo-sitemap.php:42
actionsave_postincludes\class-aiseo-sitemap.php:45
actiondelete_postincludes\class-aiseo-sitemap.php:46
filterrobots_txtincludes\class-aiseo-sitemap.php:49
filterquery_varsincludes\class-aiseo-sitemap.php:57
filterrewrite_rules_arrayincludes\class-aiseo-sitemap.php:64
actionwp_headincludes\class-aiseo-social.php:23
actionwp_headincludes\class-aiseo-taxonomy-seo.php:43
filterpre_get_document_titleincludes\class-aiseo-taxonomy-seo.php:46
filterdocument_title_partsincludes\class-aiseo-taxonomy-seo.php:47
filterdocument_title_partsincludes\class-aiseo-title-templates.php:61
filterdocument_title_separatorincludes\class-aiseo-title-templates.php:62
actionwp_headincludes\class-aiseo-webmaster.php:32
actioninitseo-wordpress.php:305

Scheduled Events 3

aiseo_cache_warming
aiseo_process_queue
aiseo_cleanup_logs
Maintenance & Trust

Praison AI SEO Maintenance & Trust

Maintenance Signals

WordPress version tested6.7.5
Last updatedDec 3, 2025
PHP min version7.4
Downloads133K

Community Trust

Rating76/100
Number of ratings6
Active installs1K
Alternatives

Praison AI SEO Alternatives

SEOPress – On-site SEO & Analytics

SEOPress – On-site SEO & Analytics

wp-seopress

A
94

SEOPress, a simple, fast and powerful all in one SEO plugin for WordPress. Rank higher in search engines, fully white label. Now with AI.

300K 14 CVEs
SEO Plugin by Squirrly SEO

SEO Plugin by Squirrly SEO

squirrly-seo

A
88

Rank without begging Google. AI-powered SEO that actually helps you win. Trusted by rebels, creators, and pros in 150+ countries.

40K 14 CVEs
ImgSEO – AI Image Alt Text Generator & Image SEO Tools

ImgSEO – AI Image Alt Text Generator & Image SEO Tools

imgseo-ai-alt-text-generator

A
100

Context-aware AI that analyzes both images and page content for accurate metadata. Process 1000+ images with 16x faster parallel processing.

400 No CVEs
Prime SEO

Prime SEO

prime-seo

A
100

SEO for the AI Era. LLMs.txt, AI Bots Manager, Schema, Sitemap — optimize for Google, ChatGPT, Perplexity & Claude. AI meta generation (Pro).

300 No CVEs
DiagnoSEO – Fast and Automated On-page SEO

DiagnoSEO – Fast and Automated On-page SEO

diagnoseo

A
100

Powerful and lightweight SEO plugin for WordPress. The best solution on the market in 2026.

100 No CVEs
Developer Profile

Praison AI SEO Developer Profile

Mervin Praison

8 plugins · 3K total installs

79
trust score
Avg Security Score
100/100
Avg Patch Time
266 days
View full developer profile
Detection Fingerprints

How We Detect Praison AI SEO

Patterns used to identify this plugin on WordPress sites during automated security audits and web crawling.

Asset Fingerprints

Asset Paths
/wp-content/plugins/seo-wordpress/assets/css/backend.css/wp-content/plugins/seo-wordpress/assets/css/frontend.css/wp-content/plugins/seo-wordpress/assets/js/backend.js/wp-content/plugins/seo-wordpress/assets/js/frontend.js
Generator Patterns
Praison AI SEO v5.0.6
Script Paths
/wp-content/plugins/seo-wordpress/assets/js/backend.js/wp-content/plugins/seo-wordpress/assets/js/frontend.js
Version Parameters
seo-wordpress/assets/css/backend.css?ver=seo-wordpress/assets/css/frontend.css?ver=seo-wordpress/assets/js/backend.js?ver=seo-wordpress/assets/js/frontend.js?ver=

HTML / DOM Fingerprints

CSS Classes
aiseo-backend-wrapperaiseo-frontend-stylesaiseo-settings-sectionaiseo-modal-content
HTML Comments
<!-- AISEO_PRELOAD --><!-- AISEO_RENDER_START --><!-- AISEO_RENDER_END -->
Data Attributes
data-aiseo-targetdata-aiseo-modal-iddata-aiseo-setting-name
JS Globals
window.AISEO_Configvar AISEO_AJAX_URLvar AISEO_NONCE
REST Endpoints
/wp-json/aiseo/v1/settings/wp-json/aiseo/v1/generate-title/wp-json/aiseo/v1/generate-description
Shortcode Output
[aiseo_schema][aiseo_sitemap][aiseo_related_posts]
FAQ

Frequently Asked Questions about Praison AI SEO