Does Taxonomy List have any unpatched vulnerabilities?

No. All known vulnerabilities in Taxonomy List have been patched as of the latest data update. Always keep the plugin updated to the latest version.

Is Taxonomy List compatible with WordPress 6.4.8?

According to WordPress.org data, Taxonomy List 1.1.4 has been tested up to WordPress 6.4.8. Check the plugin's changelog for the latest compatibility information.

How often is Taxonomy List updated?

Taxonomy List was last updated on Dec 5, 2023. Frequent updates are generally a positive security signal.

What is Taxonomy List's security score?

Taxonomy List has a WP-Safety security score of 85/100. This score is computed from CVE history, patch response time, developer trust signals, and plugin maintenance activity.

Taxonomy List Security & Risk Analysis

wordpress.org/plugins/taxonomy-list

This plugin help you to display any taxonomy terms by using shortcode. you can use the shortcode any where like in pages, post, widgets.

500 active installs v1.1.4 PHP + WP 4.0+ Updated Dec 5, 2023

categorytaxonomy-listtaxonomy-list-plugintaxonomy-list-shortcodetaxonomy-plugin

A · Safe

CVEs total0

Unpatched0

Last CVENever

Plugin page Download

Safety Verdict

Is Taxonomy List Safe to Use in 2026?

Generally Safe

Score 85/100

Taxonomy List has no known CVEs and is actively maintained. It's a solid choice for most WordPress installations.

No known CVEs Updated 2yr ago

Risk Assessment

The "taxonomy-list" v1.1.4 plugin exhibits a strong security posture based on the provided static analysis. The absence of dangerous functions, reliance on prepared statements for all SQL queries, and proper output escaping are significant strengths. The lack of file operations and external HTTP requests further reduces potential attack vectors. The plugin also has no recorded vulnerability history, indicating a consistent track record of security.

Despite these positive indicators, a complete security assessment is somewhat limited by the lack of comprehensive taint analysis and the absence of any authentication or capability checks on its single shortcode entry point. While the static analysis found no immediate risks, the lack of explicit authorization checks means that theoretically, any user could interact with the shortcode. However, given the limited attack surface and the absence of known vulnerabilities, the immediate risk appears low. The plugin demonstrates good development practices in key areas, but the absence of authentication checks on its sole entry point is a point of caution that could be improved.

Key Concerns

Missing capability checks on shortcode
Missing nonce checks on shortcode

Vulnerabilities

None known

Taxonomy List Security Vulnerabilities

No known vulnerabilities — this is a good sign.

Code Analysis

Analyzed Mar 16, 2026

Taxonomy List Code Analysis

Dangerous Functions

Raw SQL Queries

0 prepared

Unescaped Output

2 escaped

Nonce Checks

Capability Checks

File Operations

External Requests

Bundled Libraries

Output Escaping

100% escaped2 total outputs

Attack Surface

Taxonomy List Attack Surface

Entry Points1

Unprotected0

Shortcodes 1

[taxonomy_list] taxonomy-list.php:25

WordPress Hooks 1

actionwp_enqueue_scriptstaxonomy-list.php:23

Maintenance & Trust

Taxonomy List Maintenance & Trust

Maintenance Signals

WordPress version tested6.4.8

Last updatedDec 5, 2023

PHP min version

Downloads10K

Community Trust

Rating96/100

Number of ratings9

Active installs500

Alternatives

Taxonomy List Alternatives

Taxonomy Term List Visual Composer Addon

taxonomy-term-listing-visual-composer-addon

Taxonomy Term List Visual Composer Addon lets you give list of different categories, taxonomies and nested categories of different post types.

200 No CVEs

Category Order and Taxonomy Terms Order

taxonomy-terms-order

Drag-and-drop ordering for Categories & any taxonomy (hierarchically) using a Drag and Drop Sortable JavaScript capability.

500K 2 CVEs

No Category Base (WPML)

no-category-base-wpml

100

This plugin removes the mandatory 'Category Base' from your category permalinks. It's compatible with WPML.

100K No CVEs

Pages with category and tag

pages-with-category-and-tag

100

Add Categories and Tags to Pages.

60K No CVEs

Categories Images

categories-images

100

The Categories Images is a Wordpress plugin allow you to add image to category, tag or custom taxonomy.

50K No CVEs

Developer Profile

Taxonomy List Developer Profile

Muhammad Rehman

5 plugins · 2K total installs

trust score

Avg Security Score

94/100

Avg Patch Time

138 days

View full developer profile

Detection Fingerprints

How We Detect Taxonomy List

Patterns used to identify this plugin on WordPress sites during automated security audits and web crawling.

Asset Fingerprints

Asset Paths

/wp-content/plugins/taxonomy-list/assets/style.css/wp-content/plugins/taxonomy-list/assets/script.js

Script Paths

/wp-content/plugins/taxonomy-list/assets/script.js

Version Parameters

taxonomy-list/assets/style.css?ver=taxonomy-list/assets/script.js?ver=

HTML / DOM Fingerprints

CSS Classes

taxonomy-listtaxonomy-list-itemtax-arrowtax-detailstax-nametax-imagetax-titletax-child-count+3 more

Data Attributes

data-taxname

JS Globals

jQuery

Shortcode Output

<div class="taxonomy-list"><div class="taxonomy-list-item"<div class="tax-arrow"><div class="tax-details">

FAQ