WP-Safety

3WART Content Performance Heatmap Light Security & Risk Analysis

wordpress.org/plugins/3wart-content-performance-heatmap-light

A lightweight plugin to visualize user interactions on your site with heatmaps, including clicks, mouse movements, and scroll depth.

0 active installs v1.0.0 PHP 7.4+ WP 6.0+ Updated Sep 14, 2025
analyticsclicksheatmapmouse-movementsuser-tracking
100
A · Safe
CVEs total0
Unpatched0
Last CVENever
Plugin page Download
Safety Verdict

Is 3WART Content Performance Heatmap Light Safe to Use in 2026?

Generally Safe

Score 100/100

3WART Content Performance Heatmap Light has no known CVEs and is actively maintained. It's a solid choice for most WordPress installations.

No known CVEs Updated 6mo ago
Risk Assessment

The "3wart-content-performance-heatmap-light" v1.0.0 plugin exhibits a strong security posture based on the provided static analysis and vulnerability history. The code demonstrates excellent security practices, with all SQL queries utilizing prepared statements and all output being properly escaped. Furthermore, the plugin correctly implements nonce and capability checks for its AJAX entry points, and there are no identified taint flows or dangerous function usage. The absence of any known vulnerabilities, including critical or high severity issues, further reinforces its current security soundness. This suggests a well-developed plugin that prioritizes security from its inception. While the attack surface is small and completely protected, the lack of any historical vulnerabilities or complex code could also imply a less feature-rich or less frequently tested plugin. Overall, this plugin appears to be secure for its current version, with no immediate threats identified.

Vulnerabilities
None known

3WART Content Performance Heatmap Light Security Vulnerabilities

No known vulnerabilities — this is a good sign.
Code Analysis
Analyzed Mar 17, 2026

3WART Content Performance Heatmap Light Code Analysis

Dangerous Functions
0
Raw SQL Queries
0
2 prepared
Unescaped Output
0
14 escaped
Nonce Checks
2
Capability Checks
2
File Operations
0
External Requests
0
Bundled Libraries
0

SQL Query Safety

100% prepared2 total queries

Output Escaping

100% escaped14 total outputs
Data Flows
All sanitized

Data Flow Analysis

2 flows
twhcp_light_get_heatmap_data (3wart-content-performance-heatmap-light.php:225)
Source (user input) Sink (dangerous op) Sanitizer Transform Unsanitized Sanitized
Attack Surface

3WART Content Performance Heatmap Light Attack Surface

Entry Points3
Unprotected0

AJAX Handlers 3

authwp_ajax_twhcp_light_save_heatmap_data3wart-content-performance-heatmap-light.php:219
noprivwp_ajax_twhcp_light_save_heatmap_data3wart-content-performance-heatmap-light.php:220
authwp_ajax_twhcp_light_get_heatmap_data3wart-content-performance-heatmap-light.php:310
WordPress Hooks 3
actionadmin_menu3wart-content-performance-heatmap-light.php:90
actionadmin_enqueue_scripts3wart-content-performance-heatmap-light.php:126
actionwp_enqueue_scripts3wart-content-performance-heatmap-light.php:152
Maintenance & Trust

3WART Content Performance Heatmap Light Maintenance & Trust

Maintenance Signals

WordPress version tested6.8.5
Last updatedSep 14, 2025
PHP min version7.4
Downloads322

Community Trust

Rating0/100
Number of ratings0
Active installs0
Alternatives

3WART Content Performance Heatmap Light Alternatives

Open Web Analytics for WordPress

Open Web Analytics for WordPress

open-web-analytics

A
85

The official plugin for integrating Open Web Analytics with WordPress based web sites and applications.

100 No CVEs
Aurora Heatmap

Aurora Heatmap

aurora-heatmap

A
100

Beautiful like an aurora! A simple WordPress heatmap that can be completed with just a plugin.

20K No CVEs
Mouseflow for WordPress

Mouseflow for WordPress

mouseflow-for-wordpress

A
85

Mouseflow gives you free and easy-to-use conversion and user experience analytics for your website. Analyze conversion funnels, heatmaps and even sess …

7K No CVEs
UserHeat Plugin

UserHeat Plugin

userheat

A
85

Free heatmaps plugin for web analytics, on both PC and smartphone.

6K 1 CVE
Lucky Orange

Lucky Orange

lucky-orange

A
100

Less time crunching numbers, more time growing your business.

2K No CVEs
Developer Profile

3WART Content Performance Heatmap Light Developer Profile

3wartge

2 plugins · 0 total installs

94
trust score
Avg Security Score
100/100
Avg Patch Time
30 days
View full developer profile
Detection Fingerprints

How We Detect 3WART Content Performance Heatmap Light

Patterns used to identify this plugin on WordPress sites during automated security audits and web crawling.

Asset Fingerprints

Asset Paths
/wp-content/plugins/3wart-content-performance-heatmap-light/assets/css/3wart-cph-visualizer.css/wp-content/plugins/3wart-content-performance-heatmap-light/assets/js/3wart-cph-visualizer.js/wp-content/plugins/3wart-content-performance-heatmap-light/assets/js/3wart-cph-tracker.js
Script Paths
/wp-content/plugins/3wart-content-performance-heatmap-light/assets/js/3wart-cph-visualizer.js/wp-content/plugins/3wart-content-performance-heatmap-light/assets/js/3wart-cph-tracker.js
Version Parameters
3wart-content-performance-heatmap-light/assets/css/3wart-cph-visualizer.css?ver=3wart-content-performance-heatmap-light/assets/js/3wart-cph-visualizer.js?ver=3wart-content-performance-heatmap-light/assets/js/3wart-cph-tracker.js?ver=

HTML / DOM Fingerprints

CSS Classes
twhcp-heatmap-container
HTML Comments
<!-- 3WART Content Performance Heatmap Light plugin -->
Data Attributes
data-twhcp-post-iddata-twhcp-session-id
JS Globals
twhcp_admin_ajax_objecttwhcp_ajax_object
FAQ

Frequently Asked Questions about 3WART Content Performance Heatmap Light