Does Simple CSV Table have any unpatched vulnerabilities?

No published vulnerabilities and no findings under coordinated disclosure as of the latest data update. Always keep the plugin updated to the latest version.

Is Simple CSV Table compatible with WordPress 6.8.5?

According to WordPress.org data, Simple CSV Table trunk has been tested up to WordPress 6.8.5. Check the plugin's changelog for the latest compatibility information.

Is Simple CSV Table compatible with PHP 7.4+?

Simple CSV Table requires PHP 7.4 or higher. Most modern WordPress hosts run PHP 8.1 or 8.2. If you are on an older PHP version, consider upgrading before installing this plugin.

How often is Simple CSV Table updated?

Simple CSV Table was last updated on Nov 28, 2025. Frequent updates are generally a positive security signal.

What is Simple CSV Table's security score?

Simple CSV Table has a WP-Safety security score of 99/100. This score is computed from CVE history, patch response time, developer trust signals, and plugin maintenance activity.

Simple CSV Table Security & Risk Analysis

wordpress.org/plugins/simple-csv-table

Convert CSV file to table.

10 active installs vtrunk PHP 7.4+ WP 3.0+ Updated Nov 28, 2025

csvcsv2tableshortcodetable

A · Safe

CVEs total1

Unpatched0

Last CVEDec 11, 2025

Plugin page Download

Safety Verdict

Is Simple CSV Table Safe to Use in 2026?

Generally Safe

Score 99/100

Simple CSV Table has a strong security track record. Known vulnerabilities have been patched promptly. It's a solid choice for most WordPress installations.

1 known CVELast CVE: Dec 11, 2025Updated 5mo ago

Risk Assessment

The "simple-csv-table" plugin version vtrunk exhibits a generally good security posture, with several strengths identified in the static analysis. Notably, all SQL queries utilize prepared statements, and all output is properly escaped, indicating careful handling of potentially sensitive data. The absence of dangerous functions and external HTTP requests further reduces the attack surface. However, a significant concern arises from the vulnerability history, which shows a past medium-severity "Path Traversal" vulnerability. While currently unpatched CVEs are zero, this indicates a historical tendency towards vulnerabilities that could allow unauthorized access or modification of files on the server. The static analysis does not reveal any immediate critical flaws in the current version's code, but the presence of file operations and a shortcode without explicit capability checks could be areas of potential future concern if not carefully managed in subsequent updates.

Key Concerns

Previous Path Traversal vulnerability
File operations present
Shortcode without explicit capability checks

Vulnerabilities

1 published

Simple CSV Table Security Vulnerabilities

CVEs by Year

1 CVE in 2025

2025

Patched Has unpatched

Severity Breakdown

Medium

1 total CVE

CVE-2025-12960medium · 6.5Improper Limitation of a Pathname to a Restricted Directory ('Path Traversal')

Simple CSV Table <= 1.0.1 - Directory Traversal to Authenticated (Contributor+) Arbitrary File Read

Dec 11, 2025 Patched in 1.0.2 (1d)

Version History

Simple CSV Table Release Timeline

v1.0.3

v1.0.2

v1.0.11 CVE

CVE-2025-12960

Code Analysis

Analyzed Mar 17, 2026

Simple CSV Table Code Analysis

Dangerous Functions

Raw SQL Queries

0 prepared

Unescaped Output

8 escaped

Nonce Checks

Capability Checks

File Operations

External Requests

Bundled Libraries

Output Escaping

100% escaped8 total outputs

Attack Surface

Simple CSV Table Attack Surface

Entry Points1

Unprotected0

Shortcodes 1

[csv] simple-csv-table.php:47

WordPress Hooks 1

filtermedia_row_actionssimple-csv-table.php:48

Maintenance & Trust

Simple CSV Table Maintenance & Trust

Maintenance Signals

WordPress version tested6.8.5

Last updatedNov 28, 2025

PHP min version7.4

Downloads3K

Community Trust

Rating0/100

Number of ratings0

Active installs10

Alternatives

Simple CSV Table Alternatives

Simple CSV Tables

simple-csv-tables

10 No CVEs

TablePress – Tables in WordPress made easy

tablepress

Embed beautiful, accessible, and interactive tables into your WordPress website’s posts and pages, without having to write code!

700K 9 CVEs

wpDataTables – WordPress Data Table, Dynamic Tables & Table Charts Plugin

wpdatatables

The best WordPress table plugin. Create responsive, and searchable tables and charts from Excel (.xlsx, .xls or .ods), CSV, XML, JSON, and PHP.

70K 19 CVEs

Responsive Pricing Table

dk-pricr-responsive-pricing-table

A responsive and elegant way to present your offer to your visitors. Create a new pricing table now and copy-paste the shortcode anywhere.

10K 5 CVEs

Shortcode for OpenTable Widget

shortcode-for-opentable

Embed the official OpenTable widget via configurable shortcode.

400 No CVEs

Developer Profile

Simple CSV Table Developer Profile

Marcin Pietrzak

23 plugins · 89K total installs

trust score

Avg Security Score

97/100

Avg Patch Time

274 days

View full developer profile

Detection Fingerprints

How We Detect Simple CSV Table

Patterns used to identify this plugin on WordPress sites during automated security audits and web crawling.

Asset Fingerprints

HTML / DOM Fingerprints

CSS Classes

simple_csv_tablealignrightalternate

Data Attributes

data-id

Shortcode Output

<div class="simple_csv_table"><table><caption><thead>

FAQ