WP-Safety

Beehive Analytics – Google Analytics Dashboard Security & Risk Analysis

wordpress.org/plugins/beehive-analytics

View visitor stats and track user behavior from within WordPress. A Google Analytics plugin with dashboard reports and Google Tag Manager support.

30K active installs v3.4.19.1 PHP 7.4+ WP 6.4+ Updated Dec 17, 2025
google-analyticsgoogle-analytics-dashboardgoogle-tag-managerwebsite-analyticswordpress-analytics
100
A · Safe
CVEs total0
Unpatched0
Last CVENever
Plugin page Download
Safety Verdict

Is Beehive Analytics – Google Analytics Dashboard Safe to Use in 2026?

Generally Safe

Score 100/100

Beehive Analytics – Google Analytics Dashboard has no known CVEs and is actively maintained. It's a solid choice for most WordPress installations.

No known CVEs Updated 3mo ago
Risk Assessment

The beehive-analytics v3.4.19.1 plugin exhibits a generally strong security posture based on the provided static analysis. The plugin demonstrates excellent adherence to core WordPress security practices by implementing capability checks on all identified entry points and ensuring a high percentage of output is properly escaped. The absence of any known CVEs in its history further suggests a diligent approach to security maintenance. Furthermore, the lack of dangerous functions, file operations, and external HTTP requests reduces the potential attack surface significantly.

However, there are a couple of areas that warrant attention. The plugin executes three SQL queries, none of which are using prepared statements. This is a notable concern as it opens the door to potential SQL injection vulnerabilities, especially if any of the data used in these queries originates from user input, even indirectly. While taint analysis shows no critical or high-severity flows, the presence of "flows with unsanitized paths" does raise a flag, indicating that certain data pathways might not be as robustly protected as they could be, even if the current analysis didn't surface critical issues. The bundled libraries (Select2, Guzzle) are also present, and while not flagged as an immediate issue, their versions should be monitored for known vulnerabilities.

In conclusion, beehive-analytics v3.4.19.1 is a relatively secure plugin with a strong emphasis on many best practices, particularly in its handling of entry points and output escaping. The primary weakness lies in the implementation of its SQL queries. Addressing the lack of prepared statements would significantly strengthen its security and mitigate potential injection risks. The vulnerability history being clean is a very positive indicator.

Key Concerns

  • SQL queries without prepared statements
  • Flows with unsanitized paths found
Vulnerabilities
None known

Beehive Analytics – Google Analytics Dashboard Security Vulnerabilities

No known vulnerabilities — this is a good sign.
Code Analysis
Analyzed Mar 16, 2026

Beehive Analytics – Google Analytics Dashboard Code Analysis

Dangerous Functions
0
Raw SQL Queries
3
0 prepared
Unescaped Output
5
61 escaped
Nonce Checks
2
Capability Checks
21
File Operations
0
External Requests
0
Bundled Libraries
2

Bundled Libraries

Select2Guzzle

SQL Query Safety

0% prepared3 total queries

Output Escaping

92% escaped66 total outputs
Data Flows
2 unsanitized

Data Flow Analysis

2 flows2 with unsanitized paths
handle_callback (core\modules\google-auth\class-actions.php:55)
Source (user input) Sink (dangerous op) Sanitizer Transform Unsanitized Sanitized
Attack Surface

Beehive Analytics – Google Analytics Dashboard Attack Surface

Entry Points0
Unprotected0
WordPress Hooks 95
actionplugins_loadedbeehive-analytics.php:79
actioninitcore\class-core.php:54
actioninitcore\class-free.php:43
actionadmin_initcore\class-free.php:46
actionwpmudev_notices_disabled_noticescore\class-free.php:48
actioninitcore\class-free.php:51
filteradmin_body_classcore\controllers\class-admin.php:38
filterplugin_row_metacore\controllers\class-admin.php:62
filteradmin_initcore\controllers\class-admin.php:65
actionwp_enqueue_scriptscore\controllers\class-assets.php:33
actionadmin_enqueue_scriptscore\controllers\class-assets.php:34
filterbeehive_assets_get_scriptscore\controllers\class-assets.php:37
actionbeehive_settings_updatecore\controllers\class-capability.php:54
actionbeehive_settings_updatecore\controllers\class-capability.php:55
filteruser_has_capcore\controllers\class-capability.php:58
filteruser_has_capcore\controllers\class-capability.php:59
filteruser_has_capcore\controllers\class-capability.php:62
actioninitcore\controllers\class-common.php:35
actioninitcore\controllers\class-common.php:38
actionmembers_register_capscore\controllers\class-compatibility.php:36
actionmembers_register_cap_groupscore\controllers\class-compatibility.php:37
filterure_built_in_wp_capscore\controllers\class-compatibility.php:40
filterure_capabilities_groups_treecore\controllers\class-compatibility.php:41
filterbeehive_google_analytics_request_home_urlcore\controllers\class-compatibility.php:44
filterbeehive_google_analytics_popular_widget_process_url_replacecore\controllers\class-compatibility.php:45
actionadmin_initcore\controllers\class-gdpr.php:36
actioninitcore\controllers\class-i18n.php:36
actionadmin_menucore\controllers\class-menu.php:38
actionnetwork_admin_menucore\controllers\class-menu.php:39
filterbeehive_main_menu_itemscore\controllers\class-menu.php:42
filterbeehive_main_menu_itemscore\controllers\class-menu.php:43
filterbeehive_main_menu_itemscore\controllers\class-menu.php:44
filterbeehive_main_menu_itemscore\controllers\class-menu.php:45
actionadmin_enqueue_scriptscore\controllers\class-menu.php:47
actionwp_dashboard_setupcore\modules\google-analytics\class-admin.php:41
actionwp_network_dashboard_setupcore\modules\google-analytics\class-admin.php:42
filterbeehive_assets_get_scriptscore\modules\google-analytics\class-admin.php:45
filterbeehive_assets_get_stylescore\modules\google-analytics\class-admin.php:46
filterbeehive_admin_body_classes_is_plugin_admincore\modules\google-analytics\class-admin.php:49
filterbeehive_i18n_get_locale_scriptscore\modules\google-analytics\class-admin.php:52
actionadd_meta_boxescore\modules\google-analytics\class-admin.php:57
filterbeehive_main_menu_itemscore\modules\google-analytics\class-admin.php:61
actionadmin_menucore\modules\google-analytics\class-admin.php:64
actionnetwork_admin_menucore\modules\google-analytics\class-admin.php:65
filterbeehive_assets_scripts_localize_vars_beehive-dashboard-widgetcore\modules\google-analytics\class-admin.php:68
filterbeehive_assets_scripts_localize_vars_beehive-statistics-pagecore\modules\google-analytics\class-admin.php:77
filterbeehive_settings_report_treecore\modules\google-analytics\class-admin.php:86
filterbeehive_google_auth_scopescore\modules\google-analytics\class-analytics.php:38
actionwidgets_initcore\modules\google-analytics\class-analytics.php:43
filterbeehive_assets_scripts_common_localize_varscore\modules\google-analytics\views\class-stats.php:38
filterbeehive_assets_scripts_localize_vars_beehive-post-statisticscore\modules\google-analytics\views\class-stats.php:41
filterbeehive_assets_scripts_localize_vars_beehive-post-statisticscore\modules\google-analytics\views\class-stats.php:42
filterbeehive_assets_scripts_localize_vars_beehive-dashboard-widgetcore\modules\google-analytics\views\class-stats.php:43
filterbeehive_assets_scripts_localize_vars_beehive-dashboard-widgetcore\modules\google-analytics\views\class-stats.php:44
filterbeehive_assets_scripts_localize_vars_beehive-statistics-pagecore\modules\google-analytics\views\class-stats.php:45
filterbeehive_assets_scripts_localize_vars_beehive-ga-admincore\modules\google-analytics\views\class-stats.php:46
filterbeehive_assets_scripts_localize_vars_beehive-ga-admincore\modules\google-analytics\views\class-stats.php:47
filterbeehive_assets_scripts_localize_vars_beehive-dashboardcore\modules\google-analytics\views\class-stats.php:48
actionwp_headcore\modules\google-analytics\views\class-tracking.php:39
actionadmin_headcore\modules\google-analytics\views\class-tracking.php:42
filterbeehive_assets_scripts_localize_vars_beehive-popular-widgetcore\modules\google-analytics\widgets\class-popular.php:63
filterbeehive_assets_get_scriptscore\modules\google-analytics\widgets\class-popular.php:66
filterbeehive_i18n_get_locale_scriptscore\modules\google-analytics\widgets\class-popular.php:69
actioninitcore\modules\google-auth\class-actions.php:37
actionadmin_initcore\modules\google-auth\class-actions.php:40
filterbeehive_assets_scripts_common_localize_varscore\modules\google-auth\views\class-admin.php:38
filterbeehive_assets_scripts_localize_vars_beehive-accountscore\modules\google-auth\views\class-admin.php:39
filterbeehive_assets_scripts_localize_vars_beehive-dashboardcore\modules\google-auth\views\class-admin.php:40
filterbeehive_assets_scripts_localize_vars_beehive-settingscore\modules\google-auth\views\class-admin.php:41
filterbeehive_google_auth_fallback_old_credentialscore\modules\google-auth\views\class-admin.php:111
filterbeehive_main_menu_itemscore\modules\google-tag-manager\class-admin.php:38
filterbeehive_i18n_get_locale_scriptscore\modules\google-tag-manager\class-admin.php:41
filterbeehive_assets_get_scriptscore\modules\google-tag-manager\class-admin.php:44
filterbeehive_assets_get_stylescore\modules\google-tag-manager\class-admin.php:45
filterbeehive_admin_body_classes_is_plugin_admincore\modules\google-tag-manager\class-admin.php:48
actionwp_enqueue_scriptscore\modules\google-tag-manager\class-frontend.php:35
filterbeehive_default_settingscore\modules\google-tag-manager\class-tag-manager.php:35
filterbeehive_default_network_settingscore\modules\google-tag-manager\class-tag-manager.php:36
filterbeehive_get_settings_with_defaultcore\modules\google-tag-manager\class-tag-manager.php:39
filterbeehive_update_optionscore\modules\google-tag-manager\class-tag-manager.php:40
actionbeehive_gtm_frontend_inline_scripts_footercore\modules\google-tag-manager\integrations\class-forminator.php:37
actionbeehive_gtm_frontend_inline_scripts_footercore\modules\google-tag-manager\integrations\class-forminator.php:38
actionbeehive_gtm_frontend_inline_scripts_footercore\modules\google-tag-manager\integrations\class-forminator.php:39
actionbeehive_gtm_frontend_inline_scripts_footercore\modules\google-tag-manager\integrations\class-hustle.php:37
actionbeehive_gtm_frontend_inline_scripts_headercore\modules\google-tag-manager\views\class-scripts.php:37
actionwp_body_opencore\modules\google-tag-manager\views\class-scripts.php:40
filterbeehive_google_gtm_datalayer_varscore\modules\google-tag-manager\views\class-vars.php:38
filterbeehive_google_gtm_datalayer_varscore\modules\google-tag-manager\views\class-vars.php:39
filterbeehive_google_gtm_datalayer_varscore\modules\google-tag-manager\views\class-vars.php:40
filterbeehive_assets_scripts_common_localize_varscore\modules\google-tag-manager\views\class-vars.php:43
filterbeehive_assets_scripts_localize_vars_beehive-tag-managercore\modules\google-tag-manager\views\class-vars.php:46
actionrest_api_initcore\utils\abstracts\class-endpoint.php:73
filterbeehive_assets_scripts_common_localize_varscore\views\class-admin.php:37
filterbeehive_assets_scripts_localize_vars_beehive-settingscore\views\class-admin.php:38
filterbeehive_assets_scripts_localize_vars_beehive-dashboardcore\views\class-admin.php:39
Maintenance & Trust

Beehive Analytics – Google Analytics Dashboard Maintenance & Trust

Maintenance Signals

WordPress version tested6.8.5
Last updatedDec 17, 2025
PHP min version7.4
Downloads178K

Community Trust

Rating90/100
Number of ratings13
Active installs30K
Alternatives

Beehive Analytics – Google Analytics Dashboard Alternatives

MonsterInsights – Google Analytics Dashboard for WordPress (Website Stats Made Easy)

MonsterInsights – Google Analytics Dashboard for WordPress (Website Stats Made Easy)

google-analytics-for-wordpress

A
96

The best free Google Analytics plugin for WordPress. See how visitors find and use your website so you can grow your business with powerful analytics.

2.0M 10 CVEs
Analytics Insights – Google Analytics Dashboard for WordPress

Analytics Insights – Google Analytics Dashboard for WordPress

analytics-insights

A
100

A full-featured and entirely free Google Analytics Dashboard plugin for WordPress. Displays stats to help you to better understand your site content.

10K 1 CVE
GA4WP – Analytics Dashboard for the Website

GA4WP – Analytics Dashboard for the Website

ga-for-wp

C
56

Google Analytics Dashboard for WordPress Plugin by GA4WP is Lightweight, Easy to connect and comes with plenty of great features.

2K 2 unpatched
Analytify – Google Analytics Dashboard For WordPress (GA4 analytics tracking)

Analytify – Google Analytics Dashboard For WordPress (GA4 analytics tracking)

wp-analytify

A
96

Analytify is the must-have Plugin for Google Analytics 4 Integration, Tracking, & Reporting in WordPress. Enhanced eCommerce, Events, & Call Analytics

20K 13 CVEs
Analytify – Dashboard Widget for Google Analytics

Analytify – Dashboard Widget for Google Analytics

analytify-analytics-dashboard-widget

A
100

Google Analytics Dashboard widget is a Free Add-on for Google Analytics by Analytify plugin to show Google Analytics widget at WordPress dashboard.

10K No CVEs
Developer Profile

Beehive Analytics – Google Analytics Dashboard Developer Profile

WPMU DEV - Your All-in-One WordPress Platform

9 plugins · 2.4M total installs

73
trust score
Avg Security Score
91/100
Avg Patch Time
396 days
View full developer profile
Detection Fingerprints

How We Detect Beehive Analytics – Google Analytics Dashboard

Patterns used to identify this plugin on WordPress sites during automated security audits and web crawling.

Asset Fingerprints

Asset Paths
/wp-content/plugins/beehive-analytics/app/assets/css/sui-common.min.css/wp-content/plugins/beehive-analytics/app/assets/css/dashboard.min.css/wp-content/plugins/beehive-analytics/app/assets/css/settings.min.css/wp-content/plugins/beehive-analytics/app/assets/css/accounts.min.css/wp-content/plugins/beehive-analytics/app/assets/css/chunk-common.min.css/wp-content/plugins/beehive-analytics/app/assets/css/chunk-vendors.min.css/wp-content/plugins/beehive-analytics/app/assets/js/sui-common.min.js/wp-content/plugins/beehive-analytics/app/assets/js/dashboard.min.js+4 more
Script Paths
/wp-content/plugins/beehive-analytics/app/assets/js/sui-common.min.js/wp-content/plugins/beehive-analytics/app/assets/js/dashboard.min.js/wp-content/plugins/beehive-analytics/app/assets/js/settings.min.js/wp-content/plugins/beehive-analytics/app/assets/js/accounts.min.js/wp-content/plugins/beehive-analytics/app/assets/js/chunk-common.min.js/wp-content/plugins/beehive-analytics/app/assets/js/chunk-vendors.min.js
Version Parameters
beehive-analytics/app/assets/css/sui-common.min.css?ver=beehive-analytics/app/assets/css/dashboard.min.css?ver=beehive-analytics/app/assets/css/settings.min.css?ver=beehive-analytics/app/assets/css/accounts.min.css?ver=beehive-analytics/app/assets/css/chunk-common.min.css?ver=beehive-analytics/app/assets/css/chunk-vendors.min.css?ver=beehive-analytics/app/assets/js/sui-common.min.js?ver=beehive-analytics/app/assets/js/dashboard.min.js?ver=beehive-analytics/app/assets/js/settings.min.js?ver=beehive-analytics/app/assets/js/accounts.min.js?ver=beehive-analytics/app/assets/js/chunk-common.min.js?ver=beehive-analytics/app/assets/js/chunk-vendors.min.js?ver=

HTML / DOM Fingerprints

CSS Classes
beehive-dashboard-widgetbeehive-account-select-wrapper
HTML Comments
<!-- Beehive Analytics -->
Data Attributes
data-beehive-id
JS Globals
beehiveModuleVarsbeehiveVarsbeehiveI18n
REST Endpoints
/wp-json/beehive/v1/settings/wp-json/beehive/v1/accounts
FAQ

Frequently Asked Questions about Beehive Analytics – Google Analytics Dashboard