Does WPfanyi import have any unpatched vulnerabilities?

No published vulnerabilities and no findings under coordinated disclosure as of the latest data update. Always keep the plugin updated to the latest version.

Is WPfanyi import compatible with WordPress 6.2.9?

According to WordPress.org data, WPfanyi import 1.1.3 has been tested up to WordPress 6.2.9. Check the plugin's changelog for the latest compatibility information.

Is WPfanyi import compatible with PHP 5.6+?

WPfanyi import requires PHP 5.6 or higher. Most modern WordPress hosts run PHP 8.1 or 8.2. If you are on an older PHP version, consider upgrading before installing this plugin.

How often is WPfanyi import updated?

WPfanyi import was last updated on Mar 29, 2023. Frequent updates are generally a positive security signal.

What is WPfanyi import's security score?

WPfanyi import has a WP-Safety security score of 85/100. This score is computed from CVE history, patch response time, developer trust signals, and plugin maintenance activity.

WPfanyi import Security & Risk Analysis

wordpress.org/plugins/wpfanyi-import

Install translation package like a theme/plugin, no need for FTP/SFTP. this tool will save you a lot of time.

300 active installs v1.1.3 PHP 5.6+ WP 5.4+ Updated Mar 29, 2023

importtranslatetranslate-import

A · Safe

CVEs total0

Unpatched0

Last CVENever

Download

Safety Verdict

Is WPfanyi import Safe to Use in 2026?

Generally Safe

Score 85/100

WPfanyi import has no known CVEs and is actively maintained. It's a solid choice for most WordPress installations.

No known CVEs Updated 3yr ago

Risk Assessment

The "wpfanyi-import" plugin v1.1.3 demonstrates a strong security posture based on the provided static analysis and vulnerability history. The absence of any AJAX handlers, REST API routes, shortcodes, or cron events indicates a deliberately limited attack surface, which is a positive security practice. Furthermore, the plugin successfully utilizes prepared statements for all SQL queries, avoids external HTTP requests, and includes a nonce check and capability checks, all of which are crucial security measures. The lack of critical or high-severity taint flows and zero known CVEs further reinforce its good security standing.

While the overall analysis is very positive, a minor area for attention is the output escaping. With 75% of outputs properly escaped, there is still a small percentage that may not be. Although this is a low risk given the lack of other exploitable entry points and vulnerability history, it's always best practice to aim for 100% proper output escaping to prevent potential cross-site scripting (XSS) vulnerabilities. The file operations, while present, are not flagged as risky, suggesting they are implemented securely. In conclusion, the plugin is commendably secure, with only a minor area for potential improvement in output escaping.

Key Concerns

75% of outputs properly escaped

Vulnerabilities

None known

WPfanyi import Security Vulnerabilities

No known vulnerabilities — this is a good sign.

Version History

WPfanyi import Release Timeline

v1.1.3Current

v1.1.2

v1.1.1

v1.1.0

v1.0.0

Code Analysis

Analyzed Mar 16, 2026

WPfanyi import Code Analysis

Dangerous Functions

Raw SQL Queries

0 prepared

Unescaped Output

6 escaped

Nonce Checks

Capability Checks

File Operations

External Requests

Bundled Libraries

Output Escaping

75% escaped8 total outputs

Attack Surface

WPfanyi import Attack Surface

Entry Points0

Unprotected0

WordPress Hooks 3

actionadmin_enqueue_scriptscore.php:59

actioninitwpfanyi-import.php:27

actioninitwpfanyi-import.php:35

Maintenance & Trust

WPfanyi import Maintenance & Trust

Maintenance Signals

WordPress version tested6.2.9

Last updatedMar 29, 2023

PHP min version5.6

Downloads11K

Community Trust

Rating0/100

Number of ratings0

Active installs300

Alternatives

WPfanyi import Alternatives

Import Your Post

importyourpost

Import Your Post can import and auto traduct single post from an other site (Worpress, Joomla,...). Very usefull to autotraduct post in multisite.

10 No CVEs

Oli Import Sync for TranslatePress

oli-import-sync-for-translatepress

100

Sync translations from WP All Import into TranslatePress using the official Custom API. Independent plugin — not affiliated with TranslatePress.

0 No CVEs

All-in-One WP Migration and Backup

all-in-one-wp-migration

Trusted by 60M+ sites: The gold standard for WordPress migration and backup. Migrate, backup, and restore your WordPress site with one click.

5.0M 13 CVEs

WordPress Importer

wordpress-importer

Import posts, pages, comments, custom fields, categories, tags and more from a WordPress export file.

2.0M 1 CVE

One Click Demo Import

one-click-demo-import

Import your demo content, widgets and theme settings with one click. Theme authors! Enable simple theme demo import for your users.

1.0M 2 CVEs

Developer Profile

WPfanyi import Developer Profile

文派翻译（WP Chinese Translation）

3 plugins · 1K total installs

trust score

Avg Security Score

85/100

Avg Patch Time

30 days

View full developer profile

Detection Fingerprints

How We Detect WPfanyi import

Patterns used to identify this plugin on WordPress sites during automated security audits and web crawling.

Asset Fingerprints

Asset Paths

/wp-content/plugins/wpfanyi-import/assets/css/wpf-style.css/wp-content/plugins/wpfanyi-import/assets/js/sisyphus.min.js/wp-content/plugins/wpfanyi-import/assets/js/wpf.js

Script Paths

/wp-content/plugins/wpfanyi-import/assets/js/sisyphus.min.js/wp-content/plugins/wpfanyi-import/assets/js/wpf.js

Version Parameters

wpfanyi-import/assets/css/wpf-style.css?ver=wpfanyi-import/assets/js/sisyphus.min.js?ver=wpfanyi-import/assets/js/wpf.js?ver=

HTML / DOM Fingerprints

Data Attributes

data-trans_import_methoddata-trans_type

JS Globals

WPF_VERSIONWPF_DIR_URL

FAQ