Does Activity Tracker have any unpatched vulnerabilities?

No. All known vulnerabilities in Activity Tracker have been patched as of the latest data update. Always keep the plugin updated to the latest version.

Is Activity Tracker compatible with WordPress 6.7.5?

According to WordPress.org data, Activity Tracker 1.0.0 has been tested up to WordPress 6.7.5. Check the plugin's changelog for the latest compatibility information.

Is Activity Tracker compatible with PHP 7.2+?

Activity Tracker requires PHP 7.2 or higher. Most modern WordPress hosts run PHP 8.1 or 8.2. If you are on an older PHP version, consider upgrading before installing this plugin.

How often is Activity Tracker updated?

Activity Tracker was last updated on Unknown. Frequent updates are generally a positive security signal.

What is Activity Tracker's security score?

Activity Tracker has a WP-Safety security score of 100/100. This score is computed from CVE history, patch response time, developer trust signals, and plugin maintenance activity.

Activity Tracker Security & Risk Analysis

wordpress.org/plugins/activity-tracker

Tracks user activity when posts, pages, WooCommerce products, or custom post types are updated. Displays the activity log in a custom meta box.

0 active installs v1.0.0 PHP 7.2+ WP 5.5+ Updated Unknown

activity-trackermeta-boxuser-activity

A · Safe

CVEs total0

Unpatched0

Last CVENever

Download

Safety Verdict

Is Activity Tracker Safe to Use in 2026?

Generally Safe

Score 100/100

Activity Tracker has no known CVEs and is actively maintained. It's a solid choice for most WordPress installations.

No known CVEs

Risk Assessment

The "activity-tracker" plugin v1.0.0 demonstrates a strong security posture based on the provided static analysis. The absence of any identified AJAX handlers, REST API routes, shortcodes, or cron events with exposed entry points significantly limits the potential attack surface. Furthermore, the code analysis shows no dangerous functions, all SQL queries utilize prepared statements, and all output is properly escaped, indicating good coding practices to prevent common vulnerabilities like SQL injection and cross-site scripting. The plugin also appears to have no external dependencies that would require checking for bundled library vulnerabilities.

However, the complete lack of nonces and capability checks, while seemingly safe due to the absence of exposed entry points, represents a potential weakness. If future versions introduce any new entry points without these fundamental security mechanisms, it could leave the plugin vulnerable. The absence of any recorded vulnerabilities in its history is a positive sign, suggesting a well-maintained codebase. Overall, the plugin is currently very secure due to its minimal attack surface and robust internal coding practices, but a proactive approach to implementing authentication and authorization mechanisms for any future feature additions would further solidify its security.

Key Concerns

Missing nonce checks
Missing capability checks

Vulnerabilities

None known

Activity Tracker Security Vulnerabilities

No known vulnerabilities — this is a good sign.

Code Analysis

Analyzed Mar 17, 2026

Activity Tracker Code Analysis

Dangerous Functions

Raw SQL Queries

0 prepared

Unescaped Output

2 escaped

Nonce Checks

Capability Checks

File Operations

External Requests

Bundled Libraries

Output Escaping

100% escaped2 total outputs

Attack Surface

Activity Tracker Attack Surface

Entry Points0

Unprotected0

WordPress Hooks 3

actionsave_postactivity-tracker.php:62

actionadd_meta_boxesactivity-tracker.php:79

actionadmin_enqueue_scriptsactivity-tracker.php:119

Maintenance & Trust

Activity Tracker Maintenance & Trust

Maintenance Signals

WordPress version tested6.7.5

Last updatedUnknown

PHP min version7.2

Downloads685

Community Trust

Rating0/100

Number of ratings0

Active installs0

Alternatives

Activity Tracker Alternatives

Meta Box

meta-box

Meta Box plugin is a powerful, professional developer toolkit to create custom meta boxes and custom fields for your custom post types in WordPress.

500K 6 CVEs

Ocean Extra

ocean-extra

Ocean Extra adds extra features and flexibility to the OceanWP theme for a turbocharged experience.

500K 17 CVEs

OptionTree

option-tree

Theme Options UI Builder for WordPress. A simple way to create & save Theme Options and Meta Boxes for free or premium themes.

60K 5 CVEs

Activity Logs, User Activity Tracking, Multisite Activity Log from Logtivity

logtivity

100

Logtivity is the activity log service for WordPress admins. Logtivity is a unified activity log platform that tracks activity and errors across all yo …

2K No CVEs

MB Elementor Integration

mb-elementor-integrator

100

Integrates Meta Box's custom fields with Elementor page builder via dynamic tags.

2K No CVEs

Developer Profile

Activity Tracker Developer Profile

Sahib Khan

1 plugin · 0 total installs

trust score

Avg Security Score

100/100

Avg Patch Time

30 days

View full developer profile

Detection Fingerprints

How We Detect Activity Tracker

Patterns used to identify this plugin on WordPress sites during automated security audits and web crawling.

Asset Fingerprints

Asset Paths

/wp-content/plugins/activity-tracker/assets/css/admin-styles.css

Version Parameters

activity-tracker/assets/css/admin-styles.css?ver=

HTML / DOM Fingerprints

CSS Classes

skat-activity-logskat-usernameskat-timestampskat-no-activity

FAQ