Does TwitCategory have any unpatched vulnerabilities?

No. All known vulnerabilities in TwitCategory have been patched as of the latest data update. Always keep the plugin updated to the latest version.

Is TwitCategory compatible with WordPress 2.9.2?

According to WordPress.org data, TwitCategory 0.1.9 has been tested up to WordPress 2.9.2. Check the plugin's changelog for the latest compatibility information.

How often is TwitCategory updated?

TwitCategory was last updated on Mar 2, 2010. Frequent updates are generally a positive security signal.

What is TwitCategory's security score?

TwitCategory has a WP-Safety security score of 85/100. This score is computed from CVE history, patch response time, developer trust signals, and plugin maintenance activity.

TwitCategory Security & Risk Analysis

wordpress.org/plugins/twitcategory

Based on twitpress by Tom Purnell. Adds the ability to choose which category will result in updates to your twitter account.

10 active installs v0.1.9 PHP + WP 2.0.2+ Updated Mar 2, 2010

categoryintegrationtweettwitter

A · Safe

CVEs total0

Unpatched0

Last CVENever

Plugin page Download

Safety Verdict

Is TwitCategory Safe to Use in 2026?

Generally Safe

Score 85/100

TwitCategory has no known CVEs and is actively maintained. It's a solid choice for most WordPress installations.

No known CVEs Updated 16yr ago

Risk Assessment

The 'twitcategory' plugin v0.1.9 exhibits a mixed security posture. On the positive side, it has a very small attack surface with no identified AJAX handlers, REST API routes, shortcodes, or cron events that are exposed. Furthermore, it has no recorded vulnerability history, which is a good sign regarding its past security. However, significant concerns arise from the static code analysis. The complete absence of output escaping (0% properly escaped) is a critical flaw, potentially leading to Cross-Site Scripting (XSS) vulnerabilities if any of the outputs are user-controlled. The presence of file operations and external HTTP requests without adequate checks also raises red flags, as these can be vectors for further exploitation. The taint analysis showing unsanitized paths, while not classified as critical or high severity in this report, still indicates a potential for vulnerabilities if the flows are not properly handled before reaching sensitive operations.

Key Concerns

Output escaping is completely missing (0%)
Taint analysis shows unsanitized paths
No capability checks found
No nonce checks found
One file operation detected
Three external HTTP requests detected

Vulnerabilities

None known

TwitCategory Security Vulnerabilities

No known vulnerabilities — this is a good sign.

Code Analysis

Analyzed Mar 17, 2026

TwitCategory Code Analysis

Dangerous Functions

Raw SQL Queries

6 prepared

Unescaped Output

0 escaped

Nonce Checks

Capability Checks

File Operations

External Requests

Bundled Libraries

SQL Query Safety

75% prepared8 total queries

Output Escaping

0% escaped5 total outputs

Data Flows

2 unsanitized

Data Flow Analysis

2 flows2 with unsanitized paths

twitcategory_options_page (twitcategory.php:191)

Source (user input) Sink (dangerous op) Sanitizer Transform Unsanitized Sanitized

Attack Surface

TwitCategory Attack Surface

Entry Points0

Unprotected0

WordPress Hooks 3

actiondelete_posttwitcategory.php:39

actionadmin_menutwitcategory.php:40

actionwp_insert_posttwitcategory.php:41

Maintenance & Trust

TwitCategory Maintenance & Trust

Maintenance Signals

WordPress version tested2.9.2

Last updatedMar 2, 2010

PHP min version

Downloads2K

Community Trust

Rating0/100

Number of ratings0

Active installs10

Alternatives

TwitCategory Alternatives

Tools for Twitter

twitter-tools

Tools for Twitter is a plugin that creates a complete integration between your WordPress blog and your Twitter account.

1K No CVEs

Easy Twitter Feed Widget Plugin

easy-twitter-feed-widget

Add twitter feeds on your WordPress site by using the Easy Twitter Feed Widget plugin.

10K No CVEs

Twitter

twitter

Official Twitter and Periscope plugin for WordPress. Embed content and grow your audience. Requires PHP 5.6 or greater.

10K No CVEs

Autopost for X (formerly Autoshare for Twitter)

autoshare-for-twitter

Automatically shares the post title or custom message and a link to the post to X/Twitter.

6K 2 CVEs

Customize Feeds for Twitter

twitter-tweets

100

Customize Feeds for Twitter plugin for WordPress. You can use this to display real time Twitter feeds on any where on your website by using shortcode …

4K No CVEs

Developer Profile

TwitCategory Developer Profile

Nagmay

5 plugins · 250 total installs

trust score

Avg Security Score

85/100

Avg Patch Time

30 days

View full developer profile

Detection Fingerprints

How We Detect TwitCategory

Patterns used to identify this plugin on WordPress sites during automated security audits and web crawling.

Asset Fingerprints

HTML / DOM Fingerprints

HTML Comments

Data Attributes

name="twitcategory_form"id="twitcategory_submit_hidden"name="twitcategory_submit_hidden"name="twitcategory_form_username"name="twitcategory_form_password"name="twitcategory_form_category"+1 more

FAQ