Does Speech To Text have any unpatched vulnerabilities?

No. All known vulnerabilities in Speech To Text have been patched as of the latest data update. Always keep the plugin updated to the latest version.

Is Speech To Text compatible with WordPress 4.9.29?

According to WordPress.org data, Speech To Text 1.0.0 has been tested up to WordPress 4.9.29. Check the plugin's changelog for the latest compatibility information.

How often is Speech To Text updated?

Speech To Text was last updated on Jul 26, 2018. Frequent updates are generally a positive security signal.

What is Speech To Text's security score?

Speech To Text has a WP-Safety security score of 85/100. This score is computed from CVE history, patch response time, developer trust signals, and plugin maintenance activity.

Speech To Text Security & Risk Analysis

wordpress.org/plugins/speech-to-text

You can now change your speech to text that can be updated in your blog instantly without having to insert it using your keyboard.

100 active installs v1.0.0 PHP + WP 3.6.1+ Updated Jul 26, 2018

audiospeak-and-textspeech-to-text

A · Safe

CVEs total0

Unpatched0

Last CVENever

Download

Safety Verdict

Is Speech To Text Safe to Use in 2026?

Generally Safe

Score 85/100

Speech To Text has no known CVEs and is actively maintained. It's a solid choice for most WordPress installations.

No known CVEs Updated 7yr ago

Risk Assessment

The 'speech-to-text' plugin version 1.0.0 exhibits a generally positive security posture based on the provided static analysis and vulnerability history. The absence of identified dangerous functions, SQL queries without prepared statements, file operations, external HTTP requests, and a lack of critical or high severity taint flows are all strong indicators of good coding practices. Furthermore, the plugin has no recorded vulnerabilities or CVEs, suggesting a stable and secure history.

However, a significant concern arises from the complete lack of output escaping on all identified output points. This means that any data processed and displayed by the plugin could potentially be rendered as raw HTML or script, opening the door to Cross-Site Scripting (XSS) vulnerabilities if user-supplied data is involved. While the attack surface appears minimal and there are no explicit entry points that lack authentication checks, the unescaped output presents a tangible risk that cannot be overlooked. The absence of capability and nonce checks also warrants attention, though without identified entry points, the immediate impact is lessened. Overall, while the plugin demonstrates a good foundation of security, the unescaped output is a critical flaw that needs immediate attention to mitigate potential XSS risks.

Key Concerns

All identified outputs lack proper escaping
No nonce checks present
No capability checks present

Vulnerabilities

None known

Speech To Text Security Vulnerabilities

No known vulnerabilities — this is a good sign.

Code Analysis

Analyzed Mar 16, 2026

Speech To Text Code Analysis

Dangerous Functions

Raw SQL Queries

0 prepared

Unescaped Output

0 escaped

Nonce Checks

Capability Checks

File Operations

External Requests

Bundled Libraries

Output Escaping

0% escaped8 total outputs

Attack Surface

Speech To Text Attack Surface

Entry Points0

Unprotected0

WordPress Hooks 2

actionplugins_loadedspeech-to-text.php:12

actionadd_meta_boxesspeech-to-text.php:15

Maintenance & Trust

Speech To Text Maintenance & Trust

Maintenance Signals

WordPress version tested4.9.29

Last updatedJul 26, 2018

PHP min version

Downloads10K

Community Trust

Rating94/100

Number of ratings3

Active installs100

Alternatives

Speech To Text Alternatives

Simple Speech To Text

simple-speech-to-text

100

You can now change your speech to text that can be updated in your blog instantly without having to insert it using your keyboard.

10 No CVEs

The Ultimate Video Player For WordPress – by Presto Player

presto-player

The Ultimate WordPress Video Player.

100K 2 CVEs

Mixed Media Gallery Blocks

simply-gallery-block

Create mixed media galleries with images, HTML5 video, YouTube, Vimeo, and VideoPress — all in one gallery by Simply Gallery.

40K 7 CVEs

Seriously Simple Podcasting

seriously-simple-podcasting

Podcasting the way it's meant to be. No mess, no fuss - just you and your content taking over the world.

30K 14 CVEs

Compact WP Audio Player

compact-wp-audio-player

A Compact WP Audio Player Plugin that is compatible with all major browsers and devices (Android, iPhone, iPad)

20K 6 CVEs

Developer Profile

Speech To Text Developer Profile

AppJetty

8 plugins · 820 total installs

trust score

Avg Security Score

84/100

Avg Patch Time

396 days

View full developer profile

Detection Fingerprints

How We Detect Speech To Text

Patterns used to identify this plugin on WordPress sites during automated security audits and web crawling.

Asset Fingerprints

Asset Paths

/wp-content/plugins/speech-to-text/images/mic.gif/wp-content/plugins/speech-to-text/images/mic-animate.gif

HTML / DOM Fingerprints

CSS Classes

finalinteriminforightsidebysideheadlineresultsstart_button

JS Globals

webkitSpeechRecognitionrecognitionfinal_transcriptrecognizingignore_onendstart_timestamp+11 more

Shortcode Output

<div class="right">
  <button id="start_button" onclick="startButton(event)">
    <img id="start_img" src="

" alt="Start"/></button>
</div>
<div id="results">
  <span id="final_span" class="final"></span>
  <span id="interim_span" class="interim"></span>
  <p>
</div>

FAQ