WP Last Modified Security & Risk Analysis
wordpress.org/plugins/wp-open-last-modifiedThis plugins adds the last modified date, current revision and the publication date of your post/page. Simply use the shortcode [last_modified_date]
Is WP Last Modified Safe to Use in 2026?
Generally Safe
Score 85/100WP Last Modified has no known CVEs and is actively maintained. It's a solid choice for most WordPress installations.
The "wp-open-last-modified" v1.4.6 plugin exhibits a generally good security posture, with no known vulnerabilities or critical code signals. The absence of dangerous functions, file operations, and external HTTP requests is commendable. Furthermore, all SQL queries are properly prepared, and there are existing nonce checks, indicating an awareness of security best practices. The plugin also presents a very small attack surface with only one shortcode and no unprotected entry points.
However, there are specific areas for concern. The static analysis reveals that only 25% of outputs are properly escaped, which could lead to cross-site scripting (XSS) vulnerabilities if user-controlled data is not handled carefully. The taint analysis also identified one flow with an unsanitized path, which, while not rated as critical or high severity in this instance, warrants attention. The absence of capability checks on the shortcode is also a potential weakness, as it means any logged-in user could potentially trigger its functionality.
Overall, the plugin has a strong foundation with robust database handling and a limited attack surface. The primary risks stem from potential output escaping issues and the single unsanitized path identified. The complete lack of a vulnerability history is a positive indicator, suggesting past stability. Addressing the identified output escaping concerns and the unsanitized path would significantly bolster the plugin's security.
Key Concerns
- Low output escaping coverage
- Unsanitized path in taint flow
- No capability checks on shortcode
WP Last Modified Security Vulnerabilities
WP Last Modified Release Timeline
WP Last Modified Code Analysis
Output Escaping
Data Flow Analysis
WP Last Modified Attack Surface
Shortcodes 1
WordPress Hooks 2
Maintenance & Trust
WP Last Modified Maintenance & Trust
Maintenance Signals
Community Trust
WP Last Modified Alternatives
WP Last Modified Info
wp-last-modified-info
Ultimate Last Modified Plugin for WordPress with Gutenberg support. Use shortcodes to show last modified info on WP 4.7+ sites.
Last Modified Timestamp
last-modified-timestamp
Adds the last modified time to the admin interface as well as a [last-modified] shortcode to use on the front-end.
Companion Revision Manager – Revision Control
companion-revision-manager
Lightweight plugin that allows full control over post revisions.
Simple Revision Control
simple-revision-control
Easily control and limit post revisions per post type to keep your WordPress database clean and optimized—no coding required!
Freshtag – Last Modified Info & Timestamp, Detect Old Content, Boost SEO
freshtag
Display the “Last Modified” date on posts, pages, and products to signal freshness, boost SEO, and increase visitor trust
WP Last Modified Developer Profile
2 plugins · 210 total installs
How We Detect WP Last Modified
Patterns used to identify this plugin on WordPress sites during automated security audits and web crawling.
Asset Fingerprints
HTML / DOM Fingerprints
<!-- WP Last Modified by Dogan Ucar (https://www.dogan-ucar.de). --><!-- This program is distributed in the hope that it will be useful, but WITHOUT ANY WARRANTY;--><!-- 2016 - Y Dogan Ucar. -->data-ad-clientdata-ad-slotdata-ad-formatdata-full-width-responsive[last_modified_date]*timestamp**last_modified_timestamp**last_modified_timestamp_gmt*