Does Simple Posts Generator have any unpatched vulnerabilities?

No published vulnerabilities and no findings under coordinated disclosure as of the latest data update. Always keep the plugin updated to the latest version.

Is Simple Posts Generator compatible with WordPress 4.2.39?

According to WordPress.org data, Simple Posts Generator 1.3.1 has been tested up to WordPress 4.2.39. Check the plugin's changelog for the latest compatibility information.

How often is Simple Posts Generator updated?

Simple Posts Generator was last updated on Jul 29, 2015. Frequent updates are generally a positive security signal.

What is Simple Posts Generator's security score?

Simple Posts Generator has a WP-Safety security score of 85/100. This score is computed from CVE history, patch response time, developer trust signals, and plugin maintenance activity.

Simple Posts Generator Security & Risk Analysis

wordpress.org/plugins/simple-posts-generator

A straight forward Posts Generator for Developers and Testers.

10 active installs v1.3.1 PHP + WP 3.0.1+ Updated Jul 29, 2015

generatorposttoolwordpress-org

A · Safe

CVEs total0

Unpatched0

Last CVENever

Plugin page Download

Safety Verdict

Is Simple Posts Generator Safe to Use in 2026?

Generally Safe

Score 85/100

Simple Posts Generator has no known CVEs and is actively maintained. It's a solid choice for most WordPress installations.

No known CVEs Updated 10yr ago

Risk Assessment

The 'simple-posts-generator' v1.3.1 plugin exhibits a mixed security posture. On the positive side, the plugin has no recorded vulnerabilities (CVEs), no dangerous functions are present, and all SQL queries utilize prepared statements, which is excellent practice. The absence of external HTTP requests, file operations, and a low attack surface with zero unprotected entry points are also strong indicators of a well-secured codebase. However, a significant concern arises from the lack of output escaping. With 100% of outputs not being properly escaped, there is a substantial risk of Cross-Site Scripting (XSS) vulnerabilities being present. The taint analysis also revealed one flow with an unsanitized path, which, although not classified as critical or high, warrants attention and investigation, as such flows can often lead to unintended data handling or exploitation.

Key Concerns

100% of outputs unescaped
Taint flow with unsanitized path
No nonce checks
No capability checks

Vulnerabilities

None known

Simple Posts Generator Security Vulnerabilities

No known vulnerabilities — this is a good sign.

Version History

Simple Posts Generator Release Timeline

v1.3.1Current

v1.3

Code Analysis

Analyzed Mar 17, 2026

Simple Posts Generator Code Analysis

Dangerous Functions

Raw SQL Queries

0 prepared

Unescaped Output

0 escaped

Nonce Checks

Capability Checks

File Operations

External Requests

Bundled Libraries

Output Escaping

0% escaped8 total outputs

Data Flows · Security

1 unsanitized

Data Flow Analysis

1 flows1 with unsanitized paths

<main_container> (views\main_container.php:0)

Source (user input) Sink (dangerous op) Sanitizer Transform Unsanitized Sanitized

Attack Surface

Simple Posts Generator Attack Surface

Entry Points0

Unprotected0

WordPress Hooks 1

actionadmin_menusimple-posts-generator.php:40

Maintenance & Trust

Simple Posts Generator Maintenance & Trust

Maintenance Signals

WordPress version tested4.2.39

Last updatedJul 29, 2015

PHP min version

Downloads3K

Community Trust

Rating100/100

Number of ratings1

Active installs10

Alternatives

Simple Posts Generator Alternatives

Plug & Play

plug-and-play

Plug and Play our feautures and turn your WordPress Blog into a Highly Interactive, Elegant and Secure Blog.

10 No CVEs

WP Dummy Content Generator

wp-dummy-content-generator

Generate realistic dummy content for WordPress quickly. Ideal for developers and designers to populate sites for testing and development.

7K 5 CVEs

Advanced Post Manager

advanced-post-manager

Turbo charge your posts admin for any custom post type with sortable filters and columns, and auto-registration of metaboxes.

4K 1 CVE

DK PDF – WordPress PDF Generator

dk-pdf

DK PDF allows your site visitors generate PDF files from WordPress posts, pages, custom post types and WooCommerce products using a button.

3K 2 CVEs

Post Meta Inspector

post-meta-inspector

Peer inside your post meta

3K No CVEs

Developer Profile

Simple Posts Generator Developer Profile

Earl Evan Amante

4 plugins · 70 total installs

trust score

Avg Security Score

85/100

Avg Patch Time

30 days

View full developer profile

Detection Fingerprints

How We Detect Simple Posts Generator

Patterns used to identify this plugin on WordPress sites during automated security audits and web crawling.

Asset Fingerprints

Asset Paths

/wp-content/plugins/simple-posts-generator/views/generate_posts.php/wp-content/plugins/simple-posts-generator/views/help.php

HTML / DOM Fingerprints

CSS Classes

generate__msg

Data Attributes

name="generate_post_title"id="generate_post_qty"name="generate_post_qty"id="generate_post_type"name="generate_post_type"name="generate_posts"

Shortcode Output

<span class="hint">use {{i}} as text to have an incrementing value in the title</span>

FAQ