
WD Live Posts Update Security & Risk Analysis
wordpress.org/plugins/wd-live-posts-updateLive Post Updates is a powerful plugin for live updates of posts and custom post types, integrating schema.org for better SEO.
Is WD Live Posts Update Safe to Use in 2026?
Generally Safe
Score 92/100WD Live Posts Update has no known CVEs and is actively maintained. It's a solid choice for most WordPress installations.
The "wd-live-posts-update" plugin, version 1.0.2, demonstrates a generally good security posture based on the provided static analysis. The plugin has a very small attack surface, with only one shortcode entry point, and crucially, no unprotected AJAX handlers or REST API routes.
The code signals indicate a strong adherence to secure coding practices, with all SQL queries using prepared statements and a high percentage of output properly escaped. The presence of nonce and capability checks further reinforces this. The absence of any identified dangerous functions, file operations, or external HTTP requests is also a significant positive. Taint analysis found no issues, suggesting no obvious vulnerabilities related to unsanitized user input leading to malicious code execution or data breaches.
The plugin's vulnerability history is clean, with zero known CVEs. This, combined with the positive static analysis findings, suggests a well-maintained and secure plugin. The strengths lie in the limited attack surface, secure data handling (SQL, output escaping), and the lack of historical vulnerabilities. The only minor concern is that 20% of outputs are not properly escaped, which could pose a low-level risk if specifically crafted malicious input targets these unescaped outputs, though the absence of taint flows makes this less likely to be exploitable without additional context.
Key Concerns
- 20% of outputs not properly escaped
WD Live Posts Update Security Vulnerabilities
WD Live Posts Update Release Timeline
WD Live Posts Update Code Analysis
Bundled Libraries
Output Escaping
WD Live Posts Update Attack Surface
Shortcodes 1
WordPress Hooks 10
Maintenance & Trust
WD Live Posts Update Maintenance & Trust
Maintenance Signals
Community Trust
WD Live Posts Update Alternatives
FAQ Schema For Pages And Posts
faq-schema-for-pages-and-posts
FAQ Schema For Pages And Posts by Krystian Szastok Founder of RobotZebra - a London based SEO agency, allows you to turn questions and answers on your …
Premmerce SEO for WooCommerce
woo-seo-addon
Premmerce SEO for WooCommerce plugin extends the functionality of WooCommerce microdata management.
Recipe Cards For Your Food Blog from Zip Recipes
zip-recipes
Zip Recipes is the best way to easily create a beautiful food blog with professional looking recipes that can be found by Google.
Disable Yoast's Structured Data
disable-yoast-ld-json
Prevent conflict with other structured data plugins
Seamless Schema
seamless-schema
Seamlessly insert schema.org and Open Graph microdata into WordPress.
WD Live Posts Update Developer Profile
1 plugin · 10 total installs
How We Detect WD Live Posts Update
Patterns used to identify this plugin on WordPress sites during automated security audits and web crawling.
Asset Fingerprints
/wp-content/plugins/wd-live-posts-update/assets/css/wpum-public.css/wp-content/plugins/wd-live-posts-update/assets/js/wpum-custom-public.js/wp-content/plugins/wd-live-posts-update/assets/js/wpum-custom-public.jswd-live-posts-update/assets/css/wpum-public.css?ver=wd-live-posts-update/assets/js/wpum-custom-public.js?ver=HTML / DOM Fingerprints
wpum-public-styleWP_Ajax