Does CSV Page Importer have any unpatched vulnerabilities?

No published vulnerabilities and no findings under coordinated disclosure as of the latest data update. Always keep the plugin updated to the latest version.

Is CSV Page Importer compatible with WordPress 6.8.5?

According to WordPress.org data, CSV Page Importer 1.9 has been tested up to WordPress 6.8.5. Check the plugin's changelog for the latest compatibility information.

Is CSV Page Importer compatible with PHP 7.2+?

CSV Page Importer requires PHP 7.2 or higher. Most modern WordPress hosts run PHP 8.1 or 8.2. If you are on an older PHP version, consider upgrading before installing this plugin.

How often is CSV Page Importer updated?

CSV Page Importer was last updated on Jul 7, 2025. Frequent updates are generally a positive security signal.

What is CSV Page Importer's security score?

CSV Page Importer has a WP-Safety security score of 100/100. This score is computed from CVE history, patch response time, developer trust signals, and plugin maintenance activity.

CSV Page Importer Security & Risk Analysis

wordpress.org/plugins/wp-importer

Create dynamically pages/posts by CSV file within few second.

200 active installs v1.9 PHP 7.2+ WP 6.0+ Updated Jul 7, 2025

bulk-page-creationcsv-importercsv-to-wordpress-pagespage-importerpost-importer

A · Safe

CVEs total0

Unpatched0

Last CVENever

Plugin page Download

Safety Verdict

Is CSV Page Importer Safe to Use in 2026?

Generally Safe

Score 100/100

CSV Page Importer has no known CVEs and is actively maintained. It's a solid choice for most WordPress installations.

No known CVEs Updated 10mo ago

Risk Assessment

The wp-importer plugin v1.9 exhibits a generally good security posture based on the static analysis. The absence of AJAX handlers, REST API routes, shortcodes, and cron events significantly limits its direct attack surface. The fact that all SQL queries utilize prepared statements and that capability checks are present for the identified entry points are strong indicators of secure coding practices. The plugin also demonstrates a commitment to security by including nonce checks.

Key Concerns

Unsanitized paths in taint flows
Improperly escaped output

Vulnerabilities

None known

CSV Page Importer Security Vulnerabilities

No known vulnerabilities — this is a good sign.

Version History

CSV Page Importer Release Timeline

v1.9Current

v1.8

v1.7

v1.5

v1.4

v1.3

v1.2

v1.1

v1.0

Code Analysis

Analyzed Mar 16, 2026

CSV Page Importer Code Analysis

Dangerous Functions

Raw SQL Queries

3 prepared

Unescaped Output

11 escaped

Nonce Checks

Capability Checks

File Operations

External Requests

Bundled Libraries

SQL Query Safety

100% prepared3 total queries

Output Escaping

65% escaped17 total outputs

Data Flows · Security

2 unsanitized

Data Flow Analysis

2 flows2 with unsanitized paths

post (wp-importer.php:266)

Source (user input) Sink (dangerous op) Sanitizer Transform Unsanitized Sanitized

Attack Surface

CSV Page Importer Attack Surface

Entry Points0

Unprotected0

WordPress Hooks 3

actionadmin_bar_menuwp-importer.php:23

actionadmin_menuwp-importer.php:603

actionadmin_enqueue_scriptswp-importer.php:605

Maintenance & Trust

CSV Page Importer Maintenance & Trust

Maintenance Signals

WordPress version tested6.8.5

Last updatedJul 7, 2025

PHP min version7.2

Downloads26K

Community Trust

Rating74/100

Number of ratings6

Active installs200

Alternatives

CSV Page Importer Alternatives

WP Ultimate CSV Importer – Import CSV, XML & Excel into WordPress

wp-ultimate-csv-importer

Effortlessly import, export, and migrate your WordPress data with WP Ultimate CSV Importer. This all-in-one solution supports CSV, XML, and Excel file …

20K 26 CVEs

Auto Robot – WP Autoblogging and RSS Feed News Aggregator

auto-robot

100

Auto blogging and generate WordPress posts automatically from OpenAI ChatGPT, RSS Feed, Instagram, Youtube, Facebook, Twitter, Vimeo, Flickr and etc.

100 No CVEs

ClassiPress Ads Importer plugin

appthemes-classipress-ads-importer-plugin

Import Ads+Users from CSV file in ClassiPress Theme

20 No CVEs

Importe CSV

importe-csv

Import CSV

10 No CVEs

VE CSV Importer

ve-csv-importer

Import Pages/Posts with post category from CSV files into WordPress.

10 No CVEs

Developer Profile

CSV Page Importer Developer Profile

WP-EXPERTS.IN

21 plugins · 30K total installs

trust score

Avg Security Score

90/100

Avg Patch Time

347 days

View full developer profile

Detection Fingerprints

How We Detect CSV Page Importer

Patterns used to identify this plugin on WordPress sites during automated security audits and web crawling.

Asset Fingerprints

Asset Paths

/wp-content/plugins/wp-importer/images/btn_donate_LG.gif/wp-content/plugins/wp-importer/sample/sample.csv

HTML / DOM Fingerprints

CSS Classes

wi-toolbar-pagewi_menu_item_classwpimporter-tab-menuwpimporter-tab-linksactivewpimporter-settingwpimporter-tab

Data Attributes

id="wpimporter-general"id="wpimporter-support"id="div-wpimporter-general"id="div-wpimporter-support"

FAQ