Does Access Guard have any unpatched vulnerabilities?

No. All known vulnerabilities in Access Guard have been patched as of the latest data update. Always keep the plugin updated to the latest version.

Is Access Guard compatible with WordPress 6.8.5?

According to WordPress.org data, Access Guard 1.0.1 has been tested up to WordPress 6.8.5. Check the plugin's changelog for the latest compatibility information.

Is Access Guard compatible with PHP 7.4+?

Access Guard requires PHP 7.4 or higher. Most modern WordPress hosts run PHP 8.1 or 8.2. If you are on an older PHP version, consider upgrading before installing this plugin.

How often is Access Guard updated?

Access Guard was last updated on Apr 21, 2025. Frequent updates are generally a positive security signal.

What is Access Guard's security score?

Access Guard has a WP-Safety security score of 100/100. This score is computed from CVE history, patch response time, developer trust signals, and plugin maintenance activity.

Access Guard Security & Risk Analysis

wordpress.org/plugins/access-guard

Access Guard enhances security by managing user permissions and banning IPs to protect sensitive content.

0 active installs v1.0.1 PHP 7.4+ WP 6.2+ Updated Apr 21, 2025

access-protectionaccess-controlip-blockingrestrict-contentuser-access-manager

A · Safe

CVEs total0

Unpatched0

Last CVENever

Plugin page Download

Safety Verdict

Is Access Guard Safe to Use in 2026?

Generally Safe

Score 100/100

Access Guard has no known CVEs and is actively maintained. It's a solid choice for most WordPress installations.

No known CVEs Updated 11mo ago

Risk Assessment

The access-guard v1.0.1 plugin exhibits a generally strong security posture based on the provided static analysis. The absence of dangerous functions, SQL queries not using prepared statements, unescaped output, file operations, external HTTP requests, and the consistent use of capability checks are all positive indicators of secure coding practices. The taint analysis showing zero unsanitized paths further reinforces this. The plugin also has no recorded vulnerabilities, indicating a clean history and potentially good maintenance.

However, the most significant concern identified is the complete lack of nonce checks across all entry points. While the plugin demonstrates a capability check, the absence of nonces leaves it susceptible to Cross-Site Request Forgery (CSRF) attacks. For any action that modifies data or performs a sensitive operation, a nonce is crucial to ensure the request originated from a legitimate user session and not from a malicious third party. The zero count for AJAX handlers and REST API routes without auth checks is positive, but if any such entry points were to be added in future versions, the absence of nonce checks would become an immediate and serious threat.

In conclusion, access-guard v1.0.1 is well-developed in terms of preventing common code-level vulnerabilities like SQL injection and XSS. Its vulnerability history is pristine. The primary weakness lies in the overlooked CSRF protection, which should be addressed to achieve a more robust security profile.

Key Concerns

Missing nonce checks on entry points

Vulnerabilities

None known

Access Guard Security Vulnerabilities

No known vulnerabilities — this is a good sign.

Code Analysis

Analyzed Mar 17, 2026

Access Guard Code Analysis

Dangerous Functions

Raw SQL Queries

0 prepared

Unescaped Output

19 escaped

Nonce Checks

Capability Checks

File Operations

External Requests

Bundled Libraries

Output Escaping

100% escaped19 total outputs

Attack Surface

Access Guard Attack Surface

Entry Points0

Unprotected0

WordPress Hooks 4

actionadmin_menuaccess-guard.php:38

actionadmin_initaccess-guard.php:39

actionwpaccess-guard.php:40

filterthe_contentaccess-guard.php:41

Maintenance & Trust

Access Guard Maintenance & Trust

Maintenance Signals

WordPress version tested6.8.5

Last updatedApr 21, 2025

PHP min version7.4

Downloads1K

Community Trust

Rating100/100

Number of ratings1

Active installs0

Alternatives

Access Guard Alternatives

Restrictions for BuddyPress

bp-restrict

Restrict BuddyPress profiles, groups, activity, and messages by login status, membership level, or profile field.

400 1 CVE

Divi Content Restrictor

content-restrictor-for-divi

100

Conditionally restrict partial content on divi page. Divi visual builder compatible. Grant access to logged-in users, users belonging to any/all selec …

200 No CVEs

Restrict Anonymous Access

restrict-anonymous-access

Adds a shortcode to restrict content from anonymous users.

90 1 CVE

Content management control

content-management-control

Allows administrator to restrict post editing.

0 No CVEs

Password Protected — Lock Entire Site, Pages, Posts, Categories, and Partial Content

password-protected

Protect your WordPress site, pages, posts, WooCommerce products, and categories with single or multiple passwords.

300K 5 CVEs

Developer Profile

Access Guard Developer Profile

Nitin Prakash

7 plugins · 14K total installs

trust score

Avg Security Score

99/100

Avg Patch Time

8 days

View full developer profile

Detection Fingerprints

How We Detect Access Guard

Patterns used to identify this plugin on WordPress sites during automated security audits and web crawling.

Asset Fingerprints

Asset Paths

/wp-content/plugins/access-guard/assets/css/tailwind.min.css

HTML / DOM Fingerprints

CSS Classes

bg-gray-100flexitems-centerjustify-centerh-screenw-autobg-whitep-8+7 more

Data Attributes

name="access_guard_ip_block_list"name="access_guard_custom_ban_messages"name="access_guard_access_control_rules[]"value="administrator"value="editor"value="author"+5 more

FAQ