Does WP Export Categories & Taxonomies have any unpatched vulnerabilities?

Yes — WP Export Categories & Taxonomies currently has 1 published unpatched vulnerability. We recommend switching to an alternative or applying any available workarounds.

Is WP Export Categories & Taxonomies compatible with WordPress 3.9.40?

According to WordPress.org data, WP Export Categories & Taxonomies 1.0.3 has been tested up to WordPress 3.9.40. Check the plugin's changelog for the latest compatibility information.

How often is WP Export Categories & Taxonomies updated?

WP Export Categories & Taxonomies was last updated on Jun 25, 2014. Frequent updates are generally a positive security signal.

What is WP Export Categories & Taxonomies's security score?

WP Export Categories & Taxonomies has a WP-Safety security score of 63/100. This score is computed from CVE history, patch response time, developer trust signals, and plugin maintenance activity.

WP Export Categories & Taxonomies Security & Risk Analysis

wordpress.org/plugins/wp-export-categories-taxonomies

Export Categories, Tags and Taxonomies

500 active installs v1.0.3 PHP + WP 3.6+ Updated Jun 25, 2014

categoriesexport-categoriesexport-tagsexport-taxonomiestaxonomies

C · Use Caution

CVEs total1

Unpatched1

Last CVEDec 31, 2025

Plugin page Download

Safety Verdict

Is WP Export Categories & Taxonomies Safe to Use in 2026?

Use With Caution

Score 63/100

WP Export Categories & Taxonomies has 1 unpatched vulnerability. Evaluate alternatives or apply available mitigations.

1 known CVE 1 unpatched Last CVE: Dec 31, 2025Updated 11yr ago

Risk Assessment

The plugin "wp-export-categories-taxonomies" v1.0.3 presents a mixed security posture. While the static analysis shows a commendable lack of direct entry points like AJAX handlers, REST API routes, or shortcodes, and all SQL queries are prepared, there are significant concerns. A substantial portion (85%) of output is not properly escaped, indicating a high risk of Cross-Site Scripting (XSS) vulnerabilities. Furthermore, the complete absence of nonce and capability checks is a major security oversight, leaving any potential future additions to the attack surface highly vulnerable.

The vulnerability history is a critical red flag. With one known medium-severity CVE that is currently unpatched and a history of "Missing Authorization" issues, this plugin has demonstrated a pattern of weaknesses that could be exploited. The fact that the last vulnerability was recorded as 2025-12-31 suggests either a recent discovery or potential for future unaddressed issues. While the current static analysis doesn't reveal exploitable flows, the lack of fundamental security checks and the historical context point to a plugin that requires careful attention and immediate remediation of its existing vulnerabilities.

Key Concerns

15% output properly escaped
No nonce checks
No capability checks
1 unpatched CVE (medium)
History of Missing Authorization

Vulnerabilities

1 published

WP Export Categories & Taxonomies Security Vulnerabilities

CVEs by Year

1 CVE in 2025 · unpatched

2025

Patched Has unpatched

Severity Breakdown

Medium

1 total CVE

CVE-2025-62079medium · 5.3Missing Authorization

Export Categories & Taxonomies <= 1.0.3 - Missing Authorization

Dec 31, 2025Unpatched

Version History

WP Export Categories & Taxonomies Release Timeline

v1.0.3Current1 CVE

CVE-2025-62079

v1.0.21 CVE

CVE-2025-62079

v1.0.11 CVE

CVE-2025-62079

Code Analysis

Analyzed Mar 16, 2026

WP Export Categories & Taxonomies Code Analysis

Dangerous Functions

Raw SQL Queries

1 prepared

Unescaped Output

10 escaped

Nonce Checks

Capability Checks

File Operations

External Requests

Bundled Libraries

SQL Query Safety

100% prepared1 total queries

Output Escaping

15% escaped65 total outputs

Attack Surface

WP Export Categories & Taxonomies Attack Surface

Entry Points0

Unprotected0

WordPress Hooks 9

actionadmin_menuadmin\ect-admin.php:75

actionadmin_initadmin\ect-admin.php:81

actionadmin_initadmin\ECT_Admin_Base.php:63

actionadmin_initadmin\ECT_Admin_Base.php:66

actioninitadmin\ECT_Admin_Base.php:69

actioninitpublic\ect.php:70

actionwpmu_new_blogpublic\ect.php:76

actionplugins_loadedwp-export-categories.php:70

actionplugins_loadedwp-export-categories.php:95

Maintenance & Trust

WP Export Categories & Taxonomies Maintenance & Trust

Maintenance Signals

WordPress version tested3.9.40

Last updatedJun 25, 2014

PHP min version

Downloads23K

Community Trust

Rating96/100

Number of ratings26

Active installs500

Alternatives

WP Export Categories & Taxonomies Alternatives

Attachment Taxonomies

attachment-taxonomies

100

This plugin adds categories and tags to the WordPress media library - lightweight and developer-friendly.

1K No CVEs

Export Categories

export-categories

export you wordpress categories only to another wordpress site

1K 1 unpatched

WP Required Taxonomies – Categories and Tags Mandatory

required-taxonomies

Force users to select a taxonomy term when publishing posts. For example, make category or tags required

1K No CVEs

Term Taxonomy Converter

term-taxonomy-converter

Copy or convert terms between taxonomies.

500 1 CVE

WP REST API – Pure Taxonomies

wp-rest-api-pure-taxonomies

This plugin include all available taxonomy attributes into the WordPress REST API (v2) without additional API requests.

500 No CVEs

Developer Profile

WP Export Categories & Taxonomies Developer Profile

Damian

6 plugins · 34K total installs

trust score

Avg Security Score

79/100

Avg Patch Time

181 days

View full developer profile

Detection Fingerprints

How We Detect WP Export Categories & Taxonomies

Patterns used to identify this plugin on WordPress sites during automated security audits and web crawling.

Asset Fingerprints

Asset Paths

/wp-content/plugins/wp-export-categories-taxonomies/admin/js/script.js/wp-content/plugins/wp-export-categories-taxonomies/admin/css/style.css

Script Paths

/wp-content/plugins/wp-export-categories-taxonomies/admin/js/script.js

Version Parameters

wp-export-categories-taxonomies/admin/js/script.js?ver=wp-export-categories-taxonomies/admin/css/style.css?ver=

HTML / DOM Fingerprints

FAQ

WP Export Categories & Taxonomies Security & Risk Analysis

Is WP Export Categories & Taxonomies Safe to Use in 2026?

Use With Caution

Key Concerns

WP Export Categories & Taxonomies Security Vulnerabilities

CVEs by Year

Severity Breakdown

WP Export Categories & Taxonomies Release Timeline

WP Export Categories & Taxonomies Code Analysis

SQL Query Safety

Output Escaping

WP Export Categories & Taxonomies Attack Surface

WP Export Categories & Taxonomies Maintenance & Trust

Maintenance Signals

Community Trust

WP Export Categories & Taxonomies Alternatives

Attachment Taxonomies

Export Categories

WP Required Taxonomies – Categories and Tags Mandatory

Term Taxonomy Converter

WP REST API – Pure Taxonomies

WP Export Categories & Taxonomies Developer Profile

How We Detect WP Export Categories & Taxonomies

Asset Fingerprints

HTML / DOM Fingerprints

Frequently Asked Questions about WP Export Categories & Taxonomies