WP Translation Status Security & Risk Analysis
wordpress.org/plugins/wp-translationMake a link to GlotPress centralised translation so contributor can help translating the plugin that do not have yet a translation in the local site l …
Is WP Translation Status Safe to Use in 2026?
Generally Safe
Score 85/100WP Translation Status has no known CVEs and is actively maintained. It's a solid choice for most WordPress installations.
The wp-translation v0.1 plugin exhibits a strong security posture based on the provided static analysis data. There are no identified dangerous functions, all SQL queries use prepared statements, and all output is properly escaped. The absence of file operations and external HTTP requests further reduces potential attack vectors. Furthermore, the plugin has no recorded vulnerabilities in its history, suggesting a history of secure development and maintenance.
However, the analysis also highlights some areas for caution. The complete lack of nonce checks and capability checks across all identified entry points is a significant concern. While the current attack surface is zero, any future introduction of AJAX handlers, REST API routes, or shortcodes without these essential security measures could lead to vulnerabilities. The presence of a cron event, while not directly analyzed for security, represents a potential execution point that should be monitored.
In conclusion, wp-translation v0.1 appears secure due to robust coding practices and a clean vulnerability history. The primary weakness lies in the absence of fundamental WordPress security checks like nonces and capability checks. If the plugin's functionality or attack surface expands, addressing these omissions will be critical to maintaining its current good security standing.
Key Concerns
- Missing nonce checks on entry points
- Missing capability checks on entry points
WP Translation Status Security Vulnerabilities
WP Translation Status Code Analysis
WP Translation Status Attack Surface
WordPress Hooks 2
Scheduled Events 1
Maintenance & Trust
WP Translation Status Maintenance & Trust
Maintenance Signals
Community Trust
WP Translation Status Alternatives
Localize WordPress
localize
Easily switch to any localization from GlotPress
GP Remove Powered By
gp-removed-powered-by
A plugin for GlotPress as a WordPress plugin that removes the "Powered By" in the footer.
GP Additional Links
gp-additional-links
A plugin for GlotPress as a WordPress plugin that adds a link to the WordPress dashboard for admins in the GlotPress page as well as a link to the Glo …
GP Download Name
gp-download-name
A plugin for GlotPress that uses a customizable template for the download file name.
GP Single Click Edit
gp-single-click-edit
A plugin for GlotPress as a WordPress plugin that allows you to single click a translation row to open the editor.
WP Translation Status Developer Profile
2 plugins · 110 total installs
How We Detect WP Translation Status
Patterns used to identify this plugin on WordPress sites during automated security audits and web crawling.
Asset Fingerprints
/wp-content/plugins/wp-translation/css/style.css/wp-content/plugins/wp-translation/js/script.js/wp-content/plugins/wp-translation/js/script.jswp-translation/css/style.css?ver=wp-translation/js/script.js?ver=