Does The Paste have any unpatched vulnerabilities?

No published vulnerabilities and no findings under coordinated disclosure as of the latest data update. Always keep the plugin updated to the latest version.

Is The Paste compatible with WordPress 6.9.4?

According to WordPress.org data, The Paste 2.1.4 has been tested up to WordPress 6.9.4. Check the plugin's changelog for the latest compatibility information.

Is The Paste compatible with PHP 7.4+?

The Paste requires PHP 7.4 or higher. Most modern WordPress hosts run PHP 8.1 or 8.2. If you are on an older PHP version, consider upgrading before installing this plugin.

How often is The Paste updated?

The Paste was last updated on Dec 5, 2025. Frequent updates are generally a positive security signal.

What is The Paste's security score?

The Paste has a WP-Safety security score of 100/100. This score is computed from CVE history, patch response time, developer trust signals, and plugin maintenance activity.

The Paste Security & Risk Analysis

wordpress.org/plugins/the-paste

Paste files and image data from clipboard and instantly upload them to the WordPress media library.

10K active installs v2.1.4 PHP 7.4+ WP 4.8+ Updated Dec 5, 2025

clipboardcopy-pastemedia-libraryproductivity

A · Safe

CVEs total0

Unpatched0

Last CVENever

Plugin page Download

Safety Verdict

Is The Paste Safe to Use in 2026?

Generally Safe

Score 100/100

The Paste has no known CVEs and is actively maintained. It's a solid choice for most WordPress installations.

No known CVEs Updated 5mo ago

Risk Assessment

Based on the static analysis and vulnerability history, the-paste plugin v2.1.4 exhibits a strong security posture. The absence of any identified vulnerabilities in its history, coupled with robust coding practices in the static analysis, suggests a well-maintained and secure plugin. Specifically, the plugin demonstrates good security hygiene by having zero identified CVEs, no unpatched vulnerabilities, and no previously recorded common vulnerability types. This indicates a track record of security consciousness from the developers.

The static analysis further reinforces this positive assessment. The attack surface is effectively zero, with no AJAX handlers, REST API routes, shortcodes, or cron events that could serve as entry points for attackers. Crucially, there are no unprotected entry points. The code signals are also highly encouraging: zero dangerous functions, all SQL queries using prepared statements, all output properly escaped, no file operations, and no external HTTP requests. The presence of nonce checks and capability checks further strengthens its defenses.

While the plugin appears very secure, the sole noted area of potential minor concern is the inclusion of the TinyMCE library, which is a bundled library. If this library were to have a known vulnerability and was not updated, it could pose a risk. However, without further information on the specific version of TinyMCE bundled and its vulnerability status, this remains a potential, though minor, area for consideration. Overall, the plugin demonstrates excellent security practices and a clean history.

Key Concerns

Bundled outdated library

Vulnerabilities

None known

The Paste Security Vulnerabilities

No known vulnerabilities — this is a good sign.

Version History

The Paste Release Timeline

v2.1.4Current

v2.1.3

v2.1.2

v2.1.1

v2.1.0

v2.0.9

v2.0.8

v2.0.7

v2.0.6

v2.0.5

v2.0.4

v2.0.3

v2.0.2

v2.0.1

v2.0.0

v1.1.2

v1.1.1

v1.1.0

v1.0.7

v1.0.6

Code Analysis

Analyzed Mar 16, 2026

The Paste Code Analysis

Dangerous Functions

Raw SQL Queries

0 prepared

Unescaped Output

20 escaped

Nonce Checks

Capability Checks

File Operations

External Requests

Bundled Libraries

TinyMCE

Output Escaping

100% escaped20 total outputs

Attack Surface

The Paste Attack Surface

Entry Points0

Unprotected0

WordPress Hooks 20

filtertadv_allowed_buttonsinclude\ThePaste\Admin\Admin.php:36

actionadmin_footerinclude\ThePaste\Admin\Admin.php:40

actionadmin_initinclude\ThePaste\Admin\Admin.php:46

actionwp_enqueue_mediainclude\ThePaste\Admin\Admin.php:47

actionprint_media_templatesinclude\ThePaste\Admin\Admin.php:48

actionwp_enqueue_editorinclude\ThePaste\Admin\Admin.php:49

actionwp_enqueue_editorinclude\ThePaste\Admin\TinyMce\TinyMce.php:119

actiontiny_mce_before_initinclude\ThePaste\Admin\TinyMce\TinyMce.php:122

filtermce_cssinclude\ThePaste\Admin\TinyMce\TinyMce.php:126

actionadmin_print_scriptsinclude\ThePaste\Admin\TinyMce\TinyMce.php:129

filtermce_external_pluginsinclude\ThePaste\Admin\TinyMce\TinyMce.php:133

actionadmin_footerinclude\ThePaste\Admin\TinyMce\TinyMce.php:229

actionpersonal_optionsinclude\ThePaste\Admin\UserOptions.php:24

actionpersonal_options_updateinclude\ThePaste\Admin\UserOptions.php:25

actionedit_user_profile_updateinclude\ThePaste\Admin\UserOptions.php:26

actionadmin_initinclude\ThePaste\Admin\WritingOptions.php:28

filterkses_allowed_protocolsinclude\ThePaste\Core\Core.php:19

actionadmin_initinclude\ThePaste\Core\Plugin.php:35

actionplugins_loadedinclude\ThePaste\Core\Plugin.php:37

actioninitindex.php:45

Maintenance & Trust

The Paste Maintenance & Trust

Maintenance Signals

WordPress version tested6.9.4

Last updatedDec 5, 2025

PHP min version7.4

Downloads100K

Community Trust

Rating96/100

Number of ratings35

Active installs10K

Alternatives

The Paste Alternatives

FileBird – WordPress Media Library Folders & File Manager

filebird

Organize thousands of WordPress media files in folders / categories with ease.

200K 10 CVEs

Instant Images – One-click Image Uploads from Unsplash, Openverse, Pixabay, Pexels, and Giphy

instant-images

One-click uploads from Unsplash, Openverse, Pixabay, Pexels, and Giphy directly to your WordPress media library.

200K 3 CVEs

Real Media Library: Media Library Folder & File Manager

real-media-library-lite

Organize uploaded media in folders, collections and galleries: A file manager for WordPress. Media management made easy with Real Media Library! (Alte …

100K 4 CVEs

Folders – Unlimited Folders to Organize Media Library Folder, Pages, Posts, File Manager

folders

Create unlimited folders with the Folders WordPress plugin, organize & manage your Media Library files, Pages & Posts in folders 📁

90K 6 CVEs

Enhanced Media Library

enhanced-media-library

This plugin would be handy for those who need to manage a lot of media files.

70K 1 CVE

Developer Profile

The Paste Developer Profile

podpirate

7 plugins · 51K total installs

trust score

Avg Security Score

98/100

Avg Patch Time

345 days

View full developer profile

Detection Fingerprints

How We Detect The Paste

Patterns used to identify this plugin on WordPress sites during automated security audits and web crawling.

Asset Fingerprints

Asset Paths

/wp-content/plugins/the-paste/css/admin/mce/paste-editor.css/wp-content/plugins/the-paste/css/admin/mce/paste-toolbar.css/wp-content/plugins/the-paste/js/admin/mce/paste-plugin.js

Script Paths

/wp-content/plugins/the-paste/js/admin/mce/paste-plugin.js

HTML / DOM Fingerprints

JS Globals

mce_paste

FAQ