Does WP Telegram (Auto Post and Notifications) have any unpatched vulnerabilities?

No. All known vulnerabilities in WP Telegram (Auto Post and Notifications) have been patched as of the latest data update. Always keep the plugin updated to the latest version.

Is WP Telegram (Auto Post and Notifications) compatible with WordPress 6.9.4?

According to WordPress.org data, WP Telegram (Auto Post and Notifications) 4.2.15 has been tested up to WordPress 6.9.4. Check the plugin's changelog for the latest compatibility information.

Is WP Telegram (Auto Post and Notifications) compatible with PHP 8.0+?

WP Telegram (Auto Post and Notifications) requires PHP 8.0 or higher. Most modern WordPress hosts run PHP 8.1 or 8.2. If you are on an older PHP version, consider upgrading before installing this plugin.

How often is WP Telegram (Auto Post and Notifications) updated?

WP Telegram (Auto Post and Notifications) was last updated on Feb 14, 2026. Frequent updates are generally a positive security signal.

What is WP Telegram (Auto Post and Notifications)'s security score?

WP Telegram (Auto Post and Notifications) has a WP-Safety security score of 100/100. This score is computed from CVE history, patch response time, developer trust signals, and plugin maintenance activity.

WP Telegram (Auto Post and Notifications) Security & Risk Analysis

wordpress.org/plugins/wptelegram

Integrate your WordPress site perfectly with Telegram with full control.

30K active installs v4.2.15 PHP 8.0+ WP 6.6+ Updated Feb 14, 2026

channelgroupnotificationspoststelegram

A · Safe

CVEs total0

Unpatched0

Last CVENever

Plugin page Download

Safety Verdict

Is WP Telegram (Auto Post and Notifications) Safe to Use in 2026?

Generally Safe

Score 100/100

WP Telegram (Auto Post and Notifications) has no known CVEs and is actively maintained. It's a solid choice for most WordPress installations.

No known CVEs Updated 1mo ago

Risk Assessment

The wptelegram plugin version 4.2.15 demonstrates a strong security posture based on the provided static analysis and vulnerability history. The absence of any identified CVEs, critical taint flows, or dangerous functions is a significant positive indicator. The code adheres to good practices by utilizing prepared statements for all SQL queries and properly escaping all output, mitigating common vulnerabilities like SQL injection and cross-site scripting.

However, the analysis does reveal areas that, while not presenting immediate critical threats, warrant attention. The presence of a file operation without further context could potentially be a vector for abuse if not handled with extreme care, though its isolation might limit its impact. While no specific vulnerabilities are currently known or patched, the lack of a comprehensive taint analysis and the presence of some capability and nonce checks, even if they are not on exposed entry points, suggest that further scrutiny might reveal more nuanced risks.

In conclusion, wptelegram v4.2.15 appears to be a well-secured plugin with a clean vulnerability history and good coding practices. The absence of reported vulnerabilities and the robust use of security features are commendable. The single file operation is the only point of mild concern, but without further details, its risk is difficult to quantify. The overall security is high, but continued vigilance and potentially deeper code reviews for subtle issues are always advisable.

Key Concerns

File operation without further context

Vulnerabilities

None known

WP Telegram (Auto Post and Notifications) Security Vulnerabilities

No known vulnerabilities — this is a good sign.

Code Analysis

Analyzed Mar 16, 2026

WP Telegram (Auto Post and Notifications) Code Analysis

Dangerous Functions

Raw SQL Queries

0 prepared

Unescaped Output

32 escaped

Nonce Checks

Capability Checks

File Operations

External Requests

Bundled Libraries

Output Escaping

100% escaped32 total outputs

Attack Surface

WP Telegram (Auto Post and Notifications) Attack Surface

Entry Points0

Unprotected0

WordPress Hooks 57

filterduplicate_post_excludelist_filterincludes\Integrations.php:23

actioninitincludes\Logger.php:79

actionwptelegram_prepare_content_errorincludes\Logger.php:110

actionwptelegram_bot_api_debugincludes\Logger.php:168

actionwptelegram_p2tg_before_send_postincludes\Logger.php:176

actionwptelegram_p2tg_set_form_dataincludes\Logger.php:178

actionwptelegram_p2tg_post_sv_check_failedincludes\Logger.php:180

actionwptelegram_p2tg_delay_postincludes\Logger.php:182

filterwptelegram_p2tg_rules_applyincludes\Logger.php:184

filterwptelegram_p2tg_bypass_post_date_rulesincludes\Logger.php:185

filterwptelegram_p2tg_bypass_post_type_rulesincludes\Logger.php:186

filterwptelegram_p2tg_custom_rules_applyincludes\Logger.php:187

filterwptelegram_p2tg_rules_send_new_postincludes\Logger.php:188

filterwptelegram_p2tg_rules_send_existing_postincludes\Logger.php:189

filterwptelegram_p2tg_rules_send_post_typeincludes\Logger.php:190

filterwptelegram_p2tg_featured_image_sourceincludes\Logger.php:192

actionwptelegram_p2tg_post_finishincludes\Logger.php:194

actionwptelegram_p2tg_after_send_postincludes\Logger.php:196

filterwptelegram_p2tg_is_post_newincludes\Logger.php:235

actionplugins_loadedincludes\Main.php:162

actionplugins_loadedincludes\Main.php:166

actionplugins_loadedincludes\Main.php:167

actionadmin_menuincludes\Main.php:194

actioninitincludes\Main.php:226

actionrest_api_initincludes\Main.php:295

filterrest_request_before_callbacksincludes\Main.php:297

actionafter_setup_themeincludes\Main.php:301

actionadmin_initincludes\Main.php:306

actionadmin_enqueue_scriptsincludes\Main.php:308

actioninitincludes\Upgrade.php:478

filterwp_mailmodules\notify\Main.php:38

filterwptelegram_inline_script_datamodules\p2tg\Main.php:39

actionrest_api_initmodules\p2tg\Main.php:41

actionadmin_enqueue_scriptsmodules\p2tg\Main.php:53

actionenqueue_block_editor_assetsmodules\p2tg\Main.php:55

actionpost_submitbox_misc_actionsmodules\p2tg\Main.php:57

actionedit_form_topmodules\p2tg\Main.php:59

actionblock_editor_meta_box_hidden_fieldsmodules\p2tg\Main.php:60

actioncmb2_admin_initmodules\p2tg\Main.php:61

actionadd_meta_boxesmodules\p2tg\Main.php:62

actionrest_api_initmodules\p2tg\Main.php:64

filterpost_row_actionsmodules\p2tg\Main.php:70

actionwp_insert_postmodules\p2tg\Main.php:74

actionwptelegram_p2tg_delayed_postmodules\p2tg\Main.php:77

actionwptelegram_p2tg_send_postmodules\p2tg\Main.php:80

filterthe_contentmodules\p2tg\PostData.php:404

filterwptelegram_p2tg_bypass_post_date_rulesmodules\p2tg\PostSender.php:679

filterwptelegram_p2tg_bypass_custom_rulesmodules\p2tg\PostSender.php:683

filterwptelegram_p2tg_template_macro_valuesmodules\p2tg\PostSender.php:1341

actionhttp_api_curlmodules\p2tg\PostSender.php:1417

filterredirect_post_locationmodules\p2tg\PostSender.php:1587

actionwptelegram_bot_api_remote_request_initmodules\proxy\Main.php:36

actionwptelegram_bot_api_remote_request_finishmodules\proxy\Main.php:38

filterwptelegram_bot_api_base_urlmodules\proxy\ProxyHandler.php:75

filterwptelegram_bot_api_remote_post_argsmodules\proxy\ProxyHandler.php:80

filterwptelegram_bot_api_request_urlmodules\proxy\ProxyHandler.php:82

actionhttp_api_curlmodules\proxy\ProxyHandler.php:115

Maintenance & Trust

WP Telegram (Auto Post and Notifications) Maintenance & Trust

Maintenance Signals

WordPress version tested6.9.4

Last updatedFeb 14, 2026

PHP min version8.0

Downloads1.2M

Community Trust

Rating100/100

Number of ratings425

Active installs30K

Alternatives

WP Telegram (Auto Post and Notifications) Alternatives

WP Telegram Widget and Join Link

wptelegram-widget

Display the Telegram Public Channel or Group Feed in a WordPress widget or anywhere you want using a simple shortcode.

4K 2 CVEs

Telegram Bot & Channel

telegram-bot

Supercharge your WordPress site with Telegram! Broadcast posts, automate notifications, and build interactive bots for your users, groups, and channel …

600 3 CVEs

WPTelMessage

wptelmessage

The WPTelMessage plugin will help you quickly receive messages sent from the contact form on your website or from the WooCommerce plugin in Telegram.

30 No CVEs

TelegramsChannelToWP

telegramschanneltowp

Embed Telegram's Channel content, view content of telegram's channel on your site.

10 No CVEs

HQFam Post Notifier for Telegram

hqfam-telegram-post-notifier

100

Send Telegram notifications when WordPress posts are published — simple and configurable plugin.

0 No CVEs

Developer Profile

WP Telegram (Auto Post and Notifications) Developer Profile

WP Socio

4 plugins · 35K total installs

trust score

Avg Security Score

100/100

Avg Patch Time

15 days

View full developer profile

Detection Fingerprints

How We Detect WP Telegram (Auto Post and Notifications)

Patterns used to identify this plugin on WordPress sites during automated security audits and web crawling.

Asset Fingerprints

Asset Paths

/wp-content/plugins/wptelegram/assets/build/js/p2tg-block-editor.js/wp-content/plugins/wptelegram/assets/build/js/p2tg-classic-editor.js/wp-content/plugins/wptelegram/assets/build/js/settings/index.js/wp-content/plugins/wptelegram/assets/static/css/admin-menu.css

Script Paths

/wp-content/plugins/wptelegram/assets/build/js/settings/index.js/wp-content/plugins/wptelegram/assets/build/js/p2tg-block-editor.js/wp-content/plugins/wptelegram/assets/build/js/p2tg-classic-editor.js

Version Parameters

wptelegram/assets/static/css/admin-menu.css?ver=

HTML / DOM Fingerprints

Data Attributes

data-wptelegram-instancedata-wptelegram-id

JS Globals

wptelegram

REST Endpoints

/wp-json/wptelegram/v2/settings/wp-json/wptelegram/v2/logs

FAQ