Vulnerabilities and security researches forphp-compatibility-checker php-compatibility-checker

Aug 21, 2025

PSC, Research URL: PSC-2025-64587
Home page URL: Security reports for PHP Compatibility Checker
Application: PHP Compatibility Checker
Date: Aug 21, 2025
Research Description: PHP Compatibility Checker is a WordPress plugin developed by WP Engine that helps site administrators and developers analyze their WordPress themes and plugins for compatibility with modern PHP versions. As WordPress continues to evolve, maintaining compatibility with supported PHP versions is a crucial factor for both performance and security. Outdated PHP releases no longer receive security updates, leaving websites at risk of vulnerabilities. This plugin empowers users to safely transition to newer PHP versions (up to PHP 8.0) by identifying errors and warnings in their installed codebase. The tool uses linting technology combined with Tide’s scanning infrastructure to analyze plugin and theme files. It generates detailed reports with file names, line numbers, and descriptions of incompatibilities. Additionally, it recommends plugin or theme updates if newer versions include PHP compatibility fixes.
Affected versions: Min -, max -.
Status: SAFE & CERTIFIED

Jun 07, 2024

CVE, Research URL: CVE-2023-24421
Home page URL: Security reports for PHP Compatibility Checker
Application: PHP Compatibility Checker
Date: Jul 11, 2023
Research Description: Cross-Site Request Forgery (CSRF) vulnerability in WP Engine PHP Compatibility Checker plugin <= 1.5.2 versions.
Affected versions: Min -, max -.
Status: vulnerable