Does Test Content Generator have any unpatched vulnerabilities?

No. All known vulnerabilities in Test Content Generator have been patched as of the latest data update. Always keep the plugin updated to the latest version.

Is Test Content Generator compatible with WordPress 6.7.5?

According to WordPress.org data, Test Content Generator 0.4.4 has been tested up to WordPress 6.7.5. Check the plugin's changelog for the latest compatibility information.

Is Test Content Generator compatible with PHP 8.3+?

Test Content Generator requires PHP 8.3 or higher. Most modern WordPress hosts run PHP 8.1 or 8.2. If you are on an older PHP version, consider upgrading before installing this plugin.

How often is Test Content Generator updated?

Test Content Generator was last updated on Apr 7, 2025. Frequent updates are generally a positive security signal.

What is Test Content Generator's security score?

Test Content Generator has a WP-Safety security score of 100/100. This score is computed from CVE history, patch response time, developer trust signals, and plugin maintenance activity.

Test Content Generator Security & Risk Analysis

wordpress.org/plugins/test-content-generator

Quickly generate a test site full of random users, posts, comments, tags and images.

30 active installs v0.4.4 PHP 8.3+ WP 4.0+ Updated Apr 7, 2025

lipsumlorem-ipsumtest-contenttest-postswp-cli

A · Safe

CVEs total0

Unpatched0

Last CVENever

Download

Safety Verdict

Is Test Content Generator Safe to Use in 2026?

Generally Safe

Score 100/100

Test Content Generator has no known CVEs and is actively maintained. It's a solid choice for most WordPress installations.

No known CVEs Updated 12mo ago

Risk Assessment

The plugin "test-content-generator" v0.4.4 exhibits a generally positive security posture based on the provided static analysis. The complete absence of AJAX handlers, REST API routes, shortcodes, and cron events significantly limits its attack surface. Furthermore, the code's adherence to using prepared statements for all SQL queries is a strong indicator of good security practices in database interaction. The lack of any recorded vulnerabilities, past or present, further contributes to a favorable assessment.

However, the analysis does reveal critical areas of concern. The fact that 100% of the 7 output operations are not properly escaped presents a significant risk of cross-site scripting (XSS) vulnerabilities. This is a common oversight, but the complete lack of escaping is particularly troubling. The presence of an external HTTP request without further details on its handling also warrants caution, as it could potentially lead to server-side request forgery (SSRF) or other network-related vulnerabilities if not implemented securely. The absence of nonce and capability checks on all entry points, while the entry points themselves are zero, means that if any were introduced, they would be unprotected.

Key Concerns

Unescaped output found
External HTTP request without clear auth/validation
Lack of capability checks on all entry points
Lack of nonce checks on all entry points

Vulnerabilities

None known

Test Content Generator Security Vulnerabilities

No known vulnerabilities — this is a good sign.

Code Analysis

Analyzed Mar 16, 2026

Test Content Generator Code Analysis

Dangerous Functions

Raw SQL Queries

0 prepared

Unescaped Output

0 escaped

Nonce Checks

Capability Checks

File Operations

External Requests

Bundled Libraries

Output Escaping

0% escaped7 total outputs

Attack Surface

Test Content Generator Attack Surface

Entry Points0

Unprotected0

WordPress Hooks 6

actionpre_get_postslibrary\tab_custom.php:145

actionwidget_posts_argslibrary\tab_custom.php:146

actioninittest-content-generator.php:22

actioninittest-content-generator.php:23

actionadmin_inittest-content-generator.php:24

actionadmin_menutest-content-generator.php:25

Maintenance & Trust

Test Content Generator Maintenance & Trust

Maintenance Signals

WordPress version tested6.7.5

Last updatedApr 7, 2025

PHP min version8.3

Downloads2K

Community Trust

Rating100/100

Number of ratings2

Active installs30

Alternatives

Test Content Generator Alternatives

WP Lipsum

wp-lipsum

WP-Lipsum is a simple plugin for generating dummy text for your WordPress site.

10 No CVEs

Index WP MySQL For Speed

index-wp-mysql-for-speed

Speed up your WordPress site by adding high-performance keys (database indexes) to your MariaDB / MySQL database tables.

50K 1 CVE

Smart Post Show – Post Grid, Post Carousel & Slider, and List Category Posts

post-carousel

Display posts, pages, and taxonomies in beautiful carousel, slider, and grid layouts with advanced filtering. Customizable, Developer-friendly.

20K 4 CVEs

Latest Posts

latest-posts

Latest posts widget to display recent posts from category.

5K No CVEs

PE Recent Posts

pe-recent-posts

The simple plugin that allows you to display image slides with title, description and read more linked to posts from selected category.

2K No CVEs

Developer Profile

Test Content Generator Developer Profile

keith_wp

10 plugins · 300 total installs

trust score

Avg Security Score

95/100

Avg Patch Time

30 days

View full developer profile

Detection Fingerprints

How We Detect Test Content Generator

Patterns used to identify this plugin on WordPress sites during automated security audits and web crawling.

Asset Fingerprints

Asset Paths

/wp-content/plugins/test-content-generator/library/css/admin.css/wp-content/plugins/test-content-generator/library/css/style.css

Script Paths

/wp-content/plugins/test-content-generator/library/js/admin.js

Version Parameters

test-content-generator/library/css/admin.css?ver=test-content-generator/library/css/style.css?ver=test-content-generator/library/js/admin.js?ver=

HTML / DOM Fingerprints

CSS Classes

tcg-admin-settingstcg-form-row

Data Attributes

data-tcg-tab

JS Globals

TCG_Admin

FAQ