Does [凹凸曼]文章点击数 have any unpatched vulnerabilities?

No. All known vulnerabilities in [凹凸曼]文章点击数 have been patched as of the latest data update. Always keep the plugin updated to the latest version.

Is [凹凸曼]文章点击数 compatible with WordPress 6.9.4?

According to WordPress.org data, [凹凸曼]文章点击数 1.3.0 has been tested up to WordPress 6.9.4. Check the plugin's changelog for the latest compatibility information.

Is [凹凸曼]文章点击数 compatible with PHP 7.4+?

[凹凸曼]文章点击数 requires PHP 7.4 or higher. Most modern WordPress hosts run PHP 8.1 or 8.2. If you are on an older PHP version, consider upgrading before installing this plugin.

How often is [凹凸曼]文章点击数 updated?

[凹凸曼]文章点击数 was last updated on Unknown. Frequent updates are generally a positive security signal.

What is [凹凸曼]文章点击数's security score?

[凹凸曼]文章点击数 has a WP-Safety security score of 100/100. This score is computed from CVE history, patch response time, developer trust signals, and plugin maintenance activity.

[凹凸曼]文章点击数 Security & Risk Analysis

wordpress.org/plugins/apoyl-views

实现文章页面显示点击数，每刷新一次页面就会加一，方便用户查看文章游览数，也可以自动随机增加文章点击，也可以手动修改文章点击数。

10 active installs v1.3.0 PHP 7.4+ WP 6.0+ Updated Unknown

%e7%82%b9%e5%87%bb%e6%95%b0view-count%e6%b8%b8%e8%a7%88%e6%95%b0

A · Safe

CVEs total0

Unpatched0

Last CVENever

Plugin page Download

Safety Verdict

Is [凹凸曼]文章点击数 Safe to Use in 2026?

Generally Safe

Score 100/100

[凹凸曼]文章点击数 has no known CVEs and is actively maintained. It's a solid choice for most WordPress installations.

No known CVEs

Risk Assessment

The plugin 'apoyl-views' v1.3.0 exhibits a generally strong security posture with several good practices in place. Notably, there are no known vulnerabilities (CVEs) recorded, no dangerous function usage, all SQL queries utilize prepared statements, and file operations and external HTTP requests are absent. Output escaping is also performed for the majority of outputs, and nonce and capability checks are present. However, a significant concern arises from the presence of one unprotected AJAX handler, which represents a direct entry point for potential attacks without proper authentication or authorization.

The static analysis reveals a limited attack surface, but the unprotected AJAX handler is a critical weakness. While taint analysis found no unsanitized paths, the lack of authentication on an entry point means that any data processed by that handler could be manipulated by unauthenticated users, potentially leading to unintended consequences or exploitation if the handler performs sensitive operations. The absence of any vulnerability history is a positive indicator, suggesting the plugin has been developed with security in mind, but it does not negate the risks identified in the current code.

In conclusion, the plugin demonstrates good development practices in many areas, particularly concerning data handling and external interactions. The lack of historical vulnerabilities is reassuring. Nevertheless, the single unprotected AJAX handler is a substantial security gap that needs immediate attention to prevent potential unauthorized access or malicious manipulation of plugin functionality.

Key Concerns

AJAX handler without authentication

Vulnerabilities

None known

[凹凸曼]文章点击数 Security Vulnerabilities

No known vulnerabilities — this is a good sign.

Code Analysis

Analyzed Mar 16, 2026

[凹凸曼]文章点击数 Code Analysis

Dangerous Functions

Raw SQL Queries

0 prepared

Unescaped Output

13 escaped

Nonce Checks

Capability Checks

File Operations

External Requests

Bundled Libraries

Output Escaping

87% escaped15 total outputs

Data Flows

All sanitized

Data Flow Analysis

1 flows

<setting> (admin\partials\setting.php:0)

Source (user input) Sink (dangerous op) Sanitizer Transform Unsanitized Sanitized

Attack Surface

1 unprotected

[凹凸曼]文章点击数 Attack Surface

Entry Points1

Unprotected1

AJAX Handlers 1

authwp_ajax_apoyl_views_ajaxincludes\views.php:70

WordPress Hooks 9

actionplugins_loadedincludes\views.php:52

actionadmin_menuincludes\views.php:57

actionmanage_posts_columnsincludes\views.php:60

actionmanage_posts_custom_columnincludes\views.php:61

actionsave_postincludes\views.php:62

actionwp_enqueue_scriptsincludes\views.php:66

actionwp_headincludes\views.php:67

actionthe_contentincludes\views.php:68

actionwp_footerincludes\views.php:69

Maintenance & Trust

[凹凸曼]文章点击数 Maintenance & Trust

Maintenance Signals

WordPress version tested6.9.4

Last updatedUnknown

PHP min version7.4

Downloads767

Community Trust

Rating0/100

Number of ratings0

Active installs10

Alternatives

[凹凸曼]文章点击数 Alternatives

Page View Count

page-views-count

Places an icon, all time views count and views today count at the bottom of posts, pages and custom post types on any WordPress website.

10K 1 unpatched

Wp Post Views – WordPress Post views counter

wp-post-views

100

Wordpress Post views counter

4K No CVEs

Post views Stats

post-views-stats

100

This plugins will count each post/page views by visitor.

1K 1 CVE

Page View Count by Webline

page-view-count-by-webline

This plugin allows user to see how many times a given page is viewed on each page load with reports for admin to do detail analysis

200 No CVEs

Easy Post View Counter

easy-post-view-counter

With this plugin you can see how many views a single post has.

100 No CVEs

Developer Profile

[凹凸曼]文章点击数 Developer Profile

apoyl

27 plugins · 710 total installs

trust score

Avg Security Score

100/100

Avg Patch Time

30 days

View full developer profile

Detection Fingerprints

How We Detect [凹凸曼]文章点击数

Patterns used to identify this plugin on WordPress sites during automated security audits and web crawling.

Asset Fingerprints

Asset Paths

/wp-content/plugins/apoyl-views/admin/css/admin.css/wp-content/plugins/apoyl-views/admin/js/admin.js

Script Paths

/wp-content/plugins/apoyl-views/admin/js/admin.js

Version Parameters

apoyl-views/admin/css/admin.css?ver=apoyl-views/admin/js/admin.js?ver=

HTML / DOM Fingerprints

JS Globals

apoyl_views_ajax_object

FAQ