Does WP Post Contributor have any unpatched vulnerabilities?

No. All known vulnerabilities in WP Post Contributor have been patched as of the latest data update. Always keep the plugin updated to the latest version.

Is WP Post Contributor compatible with WordPress 4.9.29?

According to WordPress.org data, WP Post Contributor 1.0 has been tested up to WordPress 4.9.29. Check the plugin's changelog for the latest compatibility information.

Is WP Post Contributor compatible with PHP 5.2.4+?

WP Post Contributor requires PHP 5.2.4 or higher. Most modern WordPress hosts run PHP 8.1 or 8.2. If you are on an older PHP version, consider upgrading before installing this plugin.

How often is WP Post Contributor updated?

WP Post Contributor was last updated on Apr 25, 2018. Frequent updates are generally a positive security signal.

What is WP Post Contributor's security score?

WP Post Contributor has a WP-Safety security score of 85/100. This score is computed from CVE history, patch response time, developer trust signals, and plugin maintenance activity.

WP Post Contributor Security & Risk Analysis

wordpress.org/plugins/wp-post-contributor

WP Post Contributors plugin allows you to add more than one author to the post who have contributed.

0 active installs v1.0 PHP 5.2.4+ WP 4.0+ Updated Apr 25, 2018

contributorcontributorspostpost-contributorpost-contributors

A · Safe

CVEs total0

Unpatched0

Last CVENever

Download

Safety Verdict

Is WP Post Contributor Safe to Use in 2026?

Generally Safe

Score 85/100

WP Post Contributor has no known CVEs and is actively maintained. It's a solid choice for most WordPress installations.

No known CVEs Updated 7yr ago

Risk Assessment

The "wp-post-contributor" v1.0 plugin exhibits a generally strong security posture based on the provided static analysis. The absence of exposed AJAX handlers, REST API routes, shortcodes, and cron events significantly limits its attack surface. Furthermore, the plugin utilizes prepared statements for all SQL queries, indicating a good practice against SQL injection vulnerabilities. The presence of nonce and capability checks suggests an effort to enforce proper authorization. However, a concern arises from the output escaping, where 60% of total outputs are properly escaped, leaving 40% potentially vulnerable to cross-site scripting (XSS) attacks if the unescaped outputs handle user-supplied data. The lack of any recorded vulnerabilities in its history is a positive indicator, suggesting maturity or a very limited scope of functionality. Overall, while the plugin demonstrates good security fundamentals by restricting entry points and handling database interactions safely, the incomplete output escaping warrants attention to prevent potential XSS issues.

Key Concerns

Unescaped output present

Vulnerabilities

None known

WP Post Contributor Security Vulnerabilities

No known vulnerabilities — this is a good sign.

Code Analysis

Analyzed Mar 17, 2026

WP Post Contributor Code Analysis

Dangerous Functions

Raw SQL Queries

0 prepared

Unescaped Output

3 escaped

Nonce Checks

Capability Checks

File Operations

External Requests

Bundled Libraries

Output Escaping

60% escaped5 total outputs

Attack Surface

WP Post Contributor Attack Surface

Entry Points0

Unprotected0

WordPress Hooks 4

actionadd_meta_boxesincludes\class-post-contributors.php:13

actionsave_postincludes\class-post-contributors.php:16

filterthe_contentincludes\class-post-contributors.php:19

actionwp_enqueue_scriptsincludes\class-post-contributors.php:22

Maintenance & Trust

WP Post Contributor Maintenance & Trust

Maintenance Signals

WordPress version tested4.9.29

Last updatedApr 25, 2018

PHP min version5.2.4

Downloads1K

Community Trust

Rating80/100

Number of ratings1

Active installs0

Alternatives

WP Post Contributor Alternatives

Coopso Contributors

coopso-contributors

100

WordPress contributors plugin. The user(admin, author, and editor) can select the multiple users who contribute to the post and at the front end after …

0 No CVEs

WP SimplePost Contributors

wp-simplepost-contributors

Add more than one author to the post.

0 No CVEs

Posts Contributors

posts-contributors

This is a simple posts contributors for WordPress posts plugin.

0 No CVEs

WP Multi Author

wp-multi-author

One post, multiple contributors!

90 No CVEs

Contributor Notifications

contributor-notifications

100

An incredibly simple and lightweight solution for alerting you of new pending posts from contributors and alerting contributors when their submissions …

80 No CVEs

Developer Profile

WP Post Contributor Developer Profile

sujitkumar87

2 plugins · 20 total installs

trust score

Avg Security Score

85/100

Avg Patch Time

30 days

View full developer profile

Detection Fingerprints

How We Detect WP Post Contributor

Patterns used to identify this plugin on WordPress sites during automated security audits and web crawling.

Asset Fingerprints

Asset Paths

/wp-content/plugins/wp-post-contributor/css/wp-post-contributor.css

HTML / DOM Fingerprints

CSS Classes

wrapper-containercontrib-listmall-block-grid-6img-wrapperauthor-name

Data Attributes

id='wp_contributor_list'

JS Globals

WP_Post_Contributors

FAQ

WP Post Contributor Security & Risk Analysis

Is WP Post Contributor Safe to Use in 2026?

Generally Safe

Key Concerns

WP Post Contributor Security Vulnerabilities

WP Post Contributor Code Analysis

Output Escaping

WP Post Contributor Attack Surface

WP Post Contributor Maintenance & Trust

Maintenance Signals

Community Trust

WP Post Contributor Alternatives

Coopso Contributors

WP SimplePost Contributors

Posts Contributors

WP Multi Author

Contributor Notifications

WP Post Contributor Developer Profile

How We Detect WP Post Contributor

Asset Fingerprints

HTML / DOM Fingerprints

Frequently Asked Questions about WP Post Contributor