Does wp-webservices have any unpatched vulnerabilities?

No published vulnerabilities and no findings under coordinated disclosure as of the latest data update. Always keep the plugin updated to the latest version.

Is wp-webservices compatible with WordPress 3.2.1?

According to WordPress.org data, wp-webservices 1.0 has been tested up to WordPress 3.2.1. Check the plugin's changelog for the latest compatibility information.

How often is wp-webservices updated?

wp-webservices was last updated on Aug 12, 2011. Frequent updates are generally a positive security signal.

What is wp-webservices's security score?

wp-webservices has a WP-Safety security score of 85/100. This score is computed from CVE history, patch response time, developer trust signals, and plugin maintenance activity.

wp-webservices Security & Risk Analysis

wordpress.org/plugins/wp-webservices

This plugin extends the basic webservices exposed by WordPress.

10 active installs v1.0 PHP + WP 2.9+ Updated Aug 12, 2011

remote-apiwebservicesxmlrpc

A · Safe

CVEs total0

Unpatched0

Last CVENever

Download

Safety Verdict

Is wp-webservices Safe to Use in 2026?

Generally Safe

Score 85/100

wp-webservices has no known CVEs and is actively maintained. It's a solid choice for most WordPress installations.

No known CVEs Updated 14yr ago

Risk Assessment

The 'wp-webservices' v1.0 plugin exhibits a strong security posture based on the provided static analysis. The code signals indicate a diligent approach to security, with all identified outputs being properly escaped and a complete absence of dangerous functions, file operations, and external HTTP requests. Notably, the plugin has 35 capability checks, suggesting robust access control mechanisms are in place. The complete lack of SQL queries executed without prepared statements further enhances its security.

Vulnerabilities

None known

wp-webservices Security Vulnerabilities

No known vulnerabilities — this is a good sign.

Version History

wp-webservices Release Timeline

No version history available.

Code Analysis

Analyzed Mar 17, 2026

wp-webservices Code Analysis

Dangerous Functions

Raw SQL Queries

0 prepared

Unescaped Output

3 escaped

Nonce Checks

Capability Checks

File Operations

External Requests

Bundled Libraries

Output Escaping

100% escaped3 total outputs

Attack Surface

wp-webservices Attack Surface

Entry Points0

Unprotected0

WordPress Hooks 1

filterxmlrpc_methodswp-webservices.php:152

Maintenance & Trust

wp-webservices Maintenance & Trust

Maintenance Signals

WordPress version tested3.2.1

Last updatedAug 12, 2011

PHP min version

Downloads3K

Community Trust

Rating0/100

Number of ratings0

Active installs10

Alternatives

wp-webservices Alternatives

Disable XML-RPC

disable-xml-rpc

100

Disables the XML-RPC API in WordPress 3.5+, which is enabled by default.

200K No CVEs

Disable XML-RPC-API

disable-xml-rpc-api

100

A simple and lightweight plugin to disable XML-RPC API, X-Pingback and pingback-ping in WordPress 3.5+ for a faster and more secure website

100K No CVEs

Remove & Disable XML-RPC Pingback

remove-xmlrpc-pingback-ping

Prevent pingback, XML-RPC and denial of service DDOS attacks by disabling the XML-RPC pingback functionality.

9K No CVEs

Manage XML-RPC

manage-xml-rpc

Enable/Disable XML-RPC for all or based on IP list, also you can control pingback and Unset X-Pingback from HTTP headers.

6K No CVEs

Stop XML-RPC Attacks

stop-xml-rpc-attacks

100

Blocks dangerous XML-RPC methods while preserving Jetpack, WooCommerce, and mobile apps compatibility.

6K No CVEs

Developer Profile

wp-webservices Developer Profile

Prasath Nadarajah

1 plugin · 10 total installs

trust score

Avg Security Score

85/100

Avg Patch Time

30 days

View full developer profile

Detection Fingerprints

How We Detect wp-webservices

Patterns used to identify this plugin on WordPress sites during automated security audits and web crawling.

Asset Fingerprints

Asset Paths

/wp-content/plugins/wp-webservices/wp-webservices.php

HTML / DOM Fingerprints

REST Endpoints

/wp-json/wp-webservices/v1/settings/wp-json/wp-webservices/v1/users/wp-json/wp-webservices/v1/posts/wp-json/wp-webservices/v1/terms/wp-json/wp-webservices/v1/taxonomies

FAQ