Does Visualmodo Related Posts have any unpatched vulnerabilities?

No. All known vulnerabilities in Visualmodo Related Posts have been patched as of the latest data update. Always keep the plugin updated to the latest version.

Is Visualmodo Related Posts compatible with WordPress 5.5.18?

According to WordPress.org data, Visualmodo Related Posts 1.0.3 has been tested up to WordPress 5.5.18. Check the plugin's changelog for the latest compatibility information.

Is Visualmodo Related Posts compatible with PHP 7.0+?

Visualmodo Related Posts requires PHP 7.0 or higher. Most modern WordPress hosts run PHP 8.1 or 8.2. If you are on an older PHP version, consider upgrading before installing this plugin.

How often is Visualmodo Related Posts updated?

Visualmodo Related Posts was last updated on Nov 13, 2020. Frequent updates are generally a positive security signal.

What is Visualmodo Related Posts's security score?

Visualmodo Related Posts has a WP-Safety security score of 85/100. This score is computed from CVE history, patch response time, developer trust signals, and plugin maintenance activity.

Visualmodo Related Posts Security & Risk Analysis

wordpress.org/plugins/visualmodo-related-posts

Visualmodo Related Posts for WordPress will help increase your visitors’ time on website and decrease your bounce rate.

100 active installs v1.0.3 PHP 7.0+ WP 5.3+ Updated Nov 13, 2020

easy-related-postsrelated-contentrelated-postsrelated-posts-for-wordpress

A · Safe

CVEs total0

Unpatched0

Last CVENever

Plugin page Download

Safety Verdict

Is Visualmodo Related Posts Safe to Use in 2026?

Generally Safe

Score 85/100

Visualmodo Related Posts has no known CVEs and is actively maintained. It's a solid choice for most WordPress installations.

No known CVEs Updated 5yr ago

Risk Assessment

The "visualmodo-related-posts" plugin version 1.0.3 presents a mixed security profile. On the positive side, it exhibits good practices regarding database interactions, utilizing prepared statements for all SQL queries and employing nonce checks for its AJAX handlers. The absence of known CVEs and a clean vulnerability history are also strong indicators of a generally secure plugin. However, the code analysis reveals significant areas of concern. The plugin performs file operations and makes external HTTP requests, which, if not handled with utmost care, can introduce vulnerabilities. Most critically, a substantial portion of output is not properly escaped, and taint analysis indicates several flows with unsanitized paths. While no critical or high severity issues were directly identified in the taint analysis, the presence of unsanitized paths is a precursor to potential Cross-Site Scripting (XSS) or other injection vulnerabilities if the data processed through these flows originates from untrusted sources.

The plugin's security posture is weakened by its reliance on capability checks for only 50% of its outputs. This suggests that data displayed to users might not be properly authorized, potentially leading to information disclosure or unauthorized manipulation. The lack of any recorded vulnerabilities in its history is reassuring but does not negate the identified weaknesses in the current code. A balanced conclusion is that while the plugin has a clean track record, the static and taint analysis findings highlight potential risks related to output sanitization and data handling that require immediate attention to prevent future security incidents.

Key Concerns

Unsanitized paths in taint analysis
Low percentage of properly escaped output
File operations performed
External HTTP requests made
Capability checks are missing

Vulnerabilities

None known

Visualmodo Related Posts Security Vulnerabilities

No known vulnerabilities — this is a good sign.

Code Analysis

Analyzed Mar 16, 2026

Visualmodo Related Posts Code Analysis

Dangerous Functions

Raw SQL Queries

5 prepared

Unescaped Output

398

400 escaped

Nonce Checks

Capability Checks

File Operations

External Requests

Bundled Libraries

SQL Query Safety

100% prepared5 total queries

Output Escaping

50% escaped798 total outputs

Data Flows

4 unsanitized

Data Flow Analysis

7 flows4 with unsanitized paths

save_network_page (includes\options\core\framework.php:595)

Source (user input) Sink (dangerous op) Sanitizer Transform Unsanitized Sanitized

Attack Surface

Visualmodo Related Posts Attack Surface

Entry Points4

Unprotected0

AJAX Handlers 4

noprivwp_ajax_redux_pincludes\options\core\inc\class.p.php:7

authwp_ajax_redux_pincludes\options\core\inc\class.p.php:8

authwp_ajax_redux_hide_admin_noticeincludes\options\core\inc\class.redux_admin_notices.php:32

authwp_ajax_redux_support_hashincludes\options\core\inc\welcome\welcome.php:25

WordPress Hooks 47

actionwp_dashboard_setupincludes\options\core\core\dashboard.php:13

actionredux/initincludes\options\core\framework.php:30

actionadmin_menuincludes\options\core\framework.php:355

actionnetwork_admin_menuincludes\options\core\framework.php:359

actionadmin_bar_menuincludes\options\core\framework.php:363

actionadmin_initincludes\options\core\framework.php:369

actionadmin_initincludes\options\core\framework.php:374

actionadmin_noticesincludes\options\core\framework.php:379

actionadmin_initincludes\options\core\framework.php:382

actionadmin_enqueue_scriptsincludes\options\core\framework.php:386

actionwp_headincludes\options\core\framework.php:392

actionwp_enqueue_scriptsincludes\options\core\framework.php:393

actionlogin_headincludes\options\core\framework.php:398

actionlogin_enqueue_scriptsincludes\options\core\framework.php:399

actionadmin_headincludes\options\core\framework.php:404

actionadmin_enqueue_scriptsincludes\options\core\framework.php:405

actionwp_print_scriptsincludes\options\core\framework.php:409

actionadmin_enqueue_scriptsincludes\options\core\framework.php:410

actionadmin_bar_menuincludes\options\core\framework.php:418

actionadmin_headincludes\options\core\framework.php:1716

filteradmin_footer_textincludes\options\core\framework.php:1719

actionafter_setup_themeincludes\options\core\inc\class.redux_api.php:47

actioninitincludes\options\core\inc\class.redux_api.php:48

actionswitch_themeincludes\options\core\inc\class.redux_api.php:49

actionReduxFrameworkPlugin_admin_noticeincludes\options\core\inc\class.redux_api.php:579

actionredux_framework_plugin_admin_noticeincludes\options\core\inc\class.redux_api.php:580

actionredux/constructincludes\options\core\inc\class.redux_instances.php:66

actioncustomize_registerincludes\options\core\inc\extensions\customizer\extension_customizer.php:113

actionwp_headincludes\options\core\inc\extensions\customizer\extension_customizer.php:118

actioncustomize_save_afterincludes\options\core\inc\extensions\customizer\extension_customizer.php:122

actioncustomize_controls_print_scriptsincludes\options\core\inc\extensions\customizer\extension_customizer.php:125

actioncustomize_controls_initincludes\options\core\inc\extensions\customizer\extension_customizer.php:127

filterupload_mimesincludes\options\core\inc\extensions\import_export\extension_import_export.php:97

filterredux/font-iconsincludes\options\core\inc\fields\select\elusive-icons.php:312

actionadmin_enqueue_scriptsincludes\options\core\inc\themecheck\class.redux_themecheck.php:74

actionadmin_enqueue_scriptsincludes\options\core\inc\themecheck\class.redux_themecheck.php:75

actionthemecheck_checks_loadedincludes\options\core\inc\themecheck\class.redux_themecheck.php:77

actionthemecheck_checks_loadedincludes\options\core\inc\themecheck\class.redux_themecheck.php:78

actioninitincludes\options\core\inc\validation\unique_slug\validation_unique_slug.php:60

actionredux/loadedincludes\options\core\inc\welcome\welcome.php:23

actionadmin_menuincludes\options\core\inc\welcome\welcome.php:35

filteradmin_footer_textincludes\options\core\inc\welcome\welcome.php:41

actionadmin_headincludes\options\core\inc\welcome\welcome.php:42

actioninitincludes\options\core\inc\welcome\welcome.php:91

actionadmin_menuvisualmodo-related-posts.php:32

actionadmin_menuvisualmodo-related-posts.php:42

filterthe_contentvisualmodo-related-posts.php:175

Maintenance & Trust

Visualmodo Related Posts Maintenance & Trust

Maintenance Signals

WordPress version tested5.5.18

Last updatedNov 13, 2020

PHP min version7.0

Downloads9K

Community Trust

Rating100/100

Number of ratings2

Active installs100

Alternatives

Visualmodo Related Posts Alternatives

Social Semantic Recommendation (SOSERE)

social-semantic-recommendation-sosere

100

Display a list of related entries on your site based on an unique, self-learning, socialsemantic network analysis algorithm.

20 No CVEs

Super Related Posts – Lightweight, High Performance Algorithm & Increase Traffic!

super-related-posts

100

Related Posts Plugin to improve Traffic & Bounce-Rate with Superior Algorithm. ZERO Server Load & Highly Configurable Related Post Plugin.

10 No CVEs

Developer Profile

Visualmodo Related Posts Developer Profile

Visualmodo

3 plugins · 5K total installs

trust score

Avg Security Score

88/100

Avg Patch Time

46 days

View full developer profile

Detection Fingerprints

How We Detect Visualmodo Related Posts

Patterns used to identify this plugin on WordPress sites during automated security audits and web crawling.

Asset Fingerprints

Asset Paths

/wp-content/plugins/visualmodo-related-posts/assets/styles/backend.css/wp-content/plugins/visualmodo-related-posts/assets/styles/related-posts.css

Version Parameters

visualmodo-related-posts/assets/styles/backend.css?ver=visualmodo-related-posts/assets/styles/related-posts.css?ver=

HTML / DOM Fingerprints

CSS Classes

visualmodo-related-posts-page-welcomevisualmodo-related-posts-page-logovisualmodo-related-posts-page-actionsvisualmodo-related-posts-button-settingsvisualmodo-related-postsvisualmodo-related-posts-titlevisualmodo-related-posts-gridvisualmodo-related-post+4 more

Data Attributes

data-via="visualmodo"data-textdata-urldata-size="large"

JS Globals

twitter-wjs

FAQ