Does SEO Checker have any unpatched vulnerabilities?

No. All known vulnerabilities in SEO Checker have been patched as of the latest data update. Always keep the plugin updated to the latest version.

Is SEO Checker compatible with WordPress 5.3.21?

According to WordPress.org data, SEO Checker 1.0.2 has been tested up to WordPress 5.3.21. Check the plugin's changelog for the latest compatibility information.

Is SEO Checker compatible with PHP 5.0.0+?

SEO Checker requires PHP 5.0.0 or higher. Most modern WordPress hosts run PHP 8.1 or 8.2. If you are on an older PHP version, consider upgrading before installing this plugin.

How often is SEO Checker updated?

SEO Checker was last updated on Jan 21, 2020. Frequent updates are generally a positive security signal.

What is SEO Checker's security score?

SEO Checker has a WP-Safety security score of 85/100. This score is computed from CVE history, patch response time, developer trust signals, and plugin maintenance activity.

SEO Checker Security & Risk Analysis

wordpress.org/plugins/technical-on-page-seo-checker

SEO Checker helps WordPress website pages rank better in search engines.

50 active installs v1.0.2 PHP 5.0.0+ WP 3.0.0+ Updated Jan 21, 2020

on-page-seoseo-checkertechnical-on-page-seotechnical-seowordpress-seo

A · Safe

CVEs total0

Unpatched0

Last CVENever

Plugin page Download

Safety Verdict

Is SEO Checker Safe to Use in 2026?

Generally Safe

Score 85/100

SEO Checker has no known CVEs and is actively maintained. It's a solid choice for most WordPress installations.

No known CVEs Updated 6yr ago

Risk Assessment

The "technical-on-page-seo-checker" plugin, in version 1.0.2, exhibits a mixed security posture. On the positive side, it demonstrates good practices by not utilizing dangerous functions, employing prepared statements for all SQL queries, and having no recorded vulnerability history. This suggests a generally cautious approach to development regarding common security pitfalls.

However, significant concerns arise from the static analysis. The plugin possesses a notable attack surface with one AJAX handler that lacks any authentication checks. This is a critical weakness, as it opens the door to potential unauthorized actions if an attacker can trigger this handler. Furthermore, a substantial portion of its output (35%) is not properly escaped, which could lead to cross-site scripting (XSS) vulnerabilities if user-supplied data is directly reflected in the output.

While the absence of known CVEs and taint flows is encouraging, the identified lack of authentication on an AJAX endpoint and the unescaped output represent immediate and actionable security risks. The plugin needs to address these specific findings to improve its overall security. The vulnerability history being clean is a good sign for the past, but does not mitigate current code-level risks.

Key Concerns

AJAX handler without authentication
Significant unescaped output

Vulnerabilities

None known

SEO Checker Security Vulnerabilities

No known vulnerabilities — this is a good sign.

Code Analysis

Analyzed Mar 16, 2026

SEO Checker Code Analysis

Dangerous Functions

Raw SQL Queries

0 prepared

Unescaped Output

11 escaped

Nonce Checks

Capability Checks

File Operations

External Requests

Bundled Libraries

Output Escaping

65% escaped17 total outputs

Data Flows

All sanitized

Data Flow Analysis

2 flows

topsc_homeOutput (includes\topsc_home.php:23)

Source (user input) Sink (dangerous op) Sanitizer Transform Unsanitized Sanitized

Attack Surface

1 unprotected

SEO Checker Attack Surface

Entry Points1

Unprotected1

AJAX Handlers 1

authwp_ajax_topsc_checkincludes\topsc_check.php:208

WordPress Hooks 3

actionadmin_footerincludes\topsc_check.php:230

actionadmin_menuincludes\topsc_home.php:20

actionadmin_headincludes\topsc_home.php:298

Maintenance & Trust

SEO Checker Maintenance & Trust

Maintenance Signals

WordPress version tested5.3.21

Last updatedJan 21, 2020

PHP min version5.0.0

Downloads2K

Community Trust

Rating100/100

Number of ratings1

Active installs50

Alternatives

SEO Checker Alternatives

GGR SEO Audit – Website SEO Analyzer

ggr-website-audit

100

SEO audit and website analyzer plugin for WordPress that checks on-page SEO signals, content structure, links and technical SEO indicators.

0 No CVEs

SEO by Dizetech

seo-by-dizetech

100

Check your WordPress posts and site for on-page SEO, keyword usage, readability, content structure, and technical SEO issues.

0 No CVEs

$Rank Math SEO – AI SEO Tools to Dominate SEO Rankings$

Rank Math SEO – AI SEO Tools to Dominate SEO Rankings

seo-by-rank-math

Rank Math SEO is the best WordPress SEO plugin with the features of many SEO and AI SEO tools in a single package to help multiply your SEO traffic.

3.0M 20 CVEs

SureRank SEO – Smart Assistant with Meta Tags, Social Preview, XML Sitemap, and Schema

surerank

SureRank – SEO Assistant with Meta Tags, Social Preview, XML Sitemap, and Schema

300K 1 CVE

Schema – All In One Schema Rich Snippets

all-in-one-schemaorg-rich-snippets

Improve SEO, elevate rankings and Boost CTR. Supports different types of content and works well with Google, Bing, Yahoo, and Facebook.

30K 2 CVEs

Developer Profile

SEO Checker Developer Profile

wpza

4 plugins · 230 total installs

trust score

Avg Security Score

85/100

Avg Patch Time

30 days

View full developer profile

Detection Fingerprints

How We Detect SEO Checker

Patterns used to identify this plugin on WordPress sites during automated security audits and web crawling.

Asset Fingerprints

Asset Paths

/wp-content/plugins/technical-on-page-seo-checker/css/topsc-style.css/wp-content/plugins/technical-on-page-seo-checker/js/topsc-script.js

Script Paths

/wp-content/plugins/technical-on-page-seo-checker/js/topsc-script.js

Version Parameters

technical-on-page-seo-checker/css/topsc-style.css?ver=technical-on-page-seo-checker/js/topsc-script.js?ver=

HTML / DOM Fingerprints

CSS Classes

topsc_checktopsc_result

Data Attributes

data-topsc

JS Globals

ajaxurl

REST Endpoints

/wp-json/

FAQ