Does WPArabic have any unpatched vulnerabilities?

No. All known vulnerabilities in WPArabic have been patched as of the latest data update. Always keep the plugin updated to the latest version.

Is WPArabic compatible with WordPress 5.2.24?

According to WordPress.org data, WPArabic 1.0.4 has been tested up to WordPress 5.2.24. Check the plugin's changelog for the latest compatibility information.

Is WPArabic compatible with PHP 5.6+?

WPArabic requires PHP 5.6 or higher. Most modern WordPress hosts run PHP 8.1 or 8.2. If you are on an older PHP version, consider upgrading before installing this plugin.

How often is WPArabic updated?

WPArabic was last updated on Sep 20, 2019. Frequent updates are generally a positive security signal.

What is WPArabic's security score?

WPArabic has a WP-Safety security score of 85/100. This score is computed from CVE history, patch response time, developer trust signals, and plugin maintenance activity.

WPArabic Security & Risk Analysis

wordpress.org/plugins/wparabic

WPArabic Make Possible Arabic writing in WordPress editor Arabi -> عربي

30 active installs v1.0.4 PHP 5.6+ WP 5.0+ Updated Sep 20, 2019

arabic-editorarabic-languagearabic-typingwp-arabicwparabic

A · Safe

CVEs total0

Unpatched0

Last CVENever

Plugin page Download

Safety Verdict

Is WPArabic Safe to Use in 2026?

Generally Safe

Score 85/100

WPArabic has no known CVEs and is actively maintained. It's a solid choice for most WordPress installations.

No known CVEs Updated 6yr ago

Risk Assessment

The "wparabic" v1.0.4 plugin exhibits a generally good security posture based on the provided static analysis. The absence of identified AJAX handlers, REST API routes, shortcodes, and cron events significantly limits the potential attack surface. Furthermore, the code signals indicate no dangerous functions, no raw SQL queries, no file operations, and no external HTTP requests, all of which are positive security indicators. The lack of any recorded vulnerabilities in its history further suggests a history of secure development or diligent patching.

However, there are notable areas of concern. The extremely low percentage of properly escaped output (14%) is a significant risk. This indicates that data rendered by the plugin is highly likely to be unescaped, making it vulnerable to cross-site scripting (XSS) attacks if any user-supplied data is processed and displayed. The absence of nonce checks and capability checks, while not directly tied to an attack surface in this specific analysis, is a general weakness. It implies that if new entry points were to be introduced, they might not have these fundamental security layers in place, leaving them exposed.

In conclusion, while "wparabic" v1.0.4 benefits from a small attack surface and a clean vulnerability history, the widespread lack of output escaping is a critical security flaw that could lead to XSS vulnerabilities. The absence of nonce and capability checks is a secondary concern that points to potential gaps in secure coding practices for future development.

Key Concerns

Very low output escaping (14%)
No nonce checks detected
No capability checks detected

Vulnerabilities

None known

WPArabic Security Vulnerabilities

No known vulnerabilities — this is a good sign.

Code Analysis

Analyzed Mar 16, 2026

WPArabic Code Analysis

Dangerous Functions

Raw SQL Queries

0 prepared

Unescaped Output

1 escaped

Nonce Checks

Capability Checks

File Operations

External Requests

Bundled Libraries

Output Escaping

14% escaped7 total outputs

Attack Surface

WPArabic Attack Surface

Entry Points0

Unprotected0

WordPress Hooks 8

actionmedia_buttonswp-arabic.php:21

actionwp_enqueue_scriptswp-arabic.php:24

actionadmin_enqueue_scriptswp-arabic.php:27

filtermce_buttons_2wp-arabic.php:30

filtertiny_mce_before_initwp-arabic.php:33

filterinitwp-arabic.php:36

actionsave_postwp-arabic.php:39

actionplugins_loadedwp-arabic.php:42

Maintenance & Trust

WPArabic Maintenance & Trust

Maintenance Signals

WordPress version tested5.2.24

Last updatedSep 20, 2019

PHP min version5.6

Downloads3K

Community Trust

Rating0/100

Number of ratings0

Active installs30

Alternatives

WPArabic Alternatives

No alternatives data available yet.

Developer Profile

WPArabic Developer Profile

Hassan Ali ⚡️

4 plugins · 350 total installs

trust score

Avg Security Score

91/100

Avg Patch Time

30 days

View full developer profile

Detection Fingerprints

How We Detect WPArabic

Patterns used to identify this plugin on WordPress sites during automated security audits and web crawling.

Asset Fingerprints

Asset Paths

/wp-content/plugins/wparabic/assets/css/editor-control.css/wp-content/plugins/wparabic/assets/css/wparabic.css/wp-content/plugins/wparabic/assets/images/arabic.png/wp-content/plugins/wparabic/assets/js/wparabic-admin.js/wp-content/plugins/wparabic/assets/js/translate-api.js/wp-content/plugins/wparabic/assets/js/block.js/wp-content/plugins/wparabic/assets/css/translate.css/wp-content/plugins/wparabic/assets/css/wparabic-admin.css+1 more

Script Paths

/wp-content/plugins/wparabic/assets/js/wparabic-admin.js/wp-content/plugins/wparabic/assets/js/translate-api.js/wp-content/plugins/wparabic/assets/js/block.js/wp-content/plugins/wparabic/assets/js/api.js

Version Parameters

wparabic-translate-api?ver=1.0.0wparabic-admin?ver=1.0.0wparabic-block?ver=1.0.0api.js?ver=1.0.0

HTML / DOM Fingerprints

CSS Classes

media-button-wparabicwparabic_save_status

Data Attributes

data-wparabic-enabledata-wparabic-disable

JS Globals

arabic_text

FAQ