Does bodi0`s Bots visits counter have any unpatched vulnerabilities?

No. All known vulnerabilities in bodi0`s Bots visits counter have been patched as of the latest data update. Always keep the plugin updated to the latest version.

Is bodi0`s Bots visits counter compatible with WordPress 6.1.10?

According to WordPress.org data, bodi0`s Bots visits counter 0.9.0 has been tested up to WordPress 6.1.10. Check the plugin's changelog for the latest compatibility information.

How often is bodi0`s Bots visits counter updated?

bodi0`s Bots visits counter was last updated on Sep 17, 2024. Frequent updates are generally a positive security signal.

What is bodi0`s Bots visits counter's security score?

bodi0`s Bots visits counter has a WP-Safety security score of 92/100. This score is computed from CVE history, patch response time, developer trust signals, and plugin maintenance activity.

bodi0`s Bots visits counter Security & Risk Analysis

wordpress.org/plugins/bodi0s-bots-visits-counter

Counts the visits from web spiders, crawlers and bots in your blog, with ability to get the blog rankings.

100 active installs v0.9.0 PHP + WP 4.1.0+ Updated Sep 17, 2024

botcountercrawlervisitswebsite

A · Safe

CVEs total0

Unpatched0

Last CVENever

Plugin page Download

Safety Verdict

Is bodi0`s Bots visits counter Safe to Use in 2026?

Generally Safe

Score 92/100

bodi0`s Bots visits counter has no known CVEs and is actively maintained. It's a solid choice for most WordPress installations.

No known CVEs Updated 1yr ago

Risk Assessment

The 'bodi0s-bots-visits-counter' plugin v0.9.0 exhibits a mixed security posture. On the positive side, it demonstrates good practices regarding SQL query execution, with 100% of its 16 SQL queries utilizing prepared statements, which significantly mitigates SQL injection risks. The presence of nonce checks and capability checks, along with zero known CVEs and no recorded historical vulnerabilities, further suggests a generally cautious approach to security.

However, significant concerns arise from the static analysis. The plugin has an extremely low rate of output escaping, with only 19% of 63 outputs being properly escaped. This indicates a high risk of Cross-Site Scripting (XSS) vulnerabilities, as user-supplied or dynamic data displayed on the frontend or backend is likely not being sanitized, allowing for malicious script injection.

Furthermore, the taint analysis revealed two flows with unsanitized paths and one high-severity taint flow. While the exact nature of this high-severity flow isn't detailed, it, combined with the poor output escaping, points to a critical potential for code execution or data compromise. The lack of a substantial attack surface is a positive, but the presence of these specific code quality issues overshadows this strength.

Key Concerns

High percentage of unescaped outputs
Unsanitized paths in taint analysis
High severity taint flow identified

Vulnerabilities

None known

bodi0`s Bots visits counter Security Vulnerabilities

No known vulnerabilities — this is a good sign.

Code Analysis

Analyzed Mar 16, 2026

bodi0`s Bots visits counter Code Analysis

Dangerous Functions

Raw SQL Queries

16 prepared

Unescaped Output

12 escaped

Nonce Checks

Capability Checks

File Operations

External Requests

Bundled Libraries

SQL Query Safety

100% prepared16 total queries

Output Escaping

19% escaped63 total outputs

Data Flows

2 unsanitized

Data Flow Analysis

4 flows2 with unsanitized paths

<bodi0-bot-ajax> (bodi0-bot-ajax.php:0)

Source (user input) Sink (dangerous op) Sanitizer Transform Unsanitized Sanitized

Attack Surface

bodi0`s Bots visits counter Attack Surface

Entry Points0

Unprotected0

WordPress Hooks 4

actioninitbodi0-bot-counter.php:38

actionadmin_initbodi0-bot-counter.php:40

actionadmin_menubodi0-bot-counter.php:42

actionwp_footerbodi0-bot-counter.php:44

Maintenance & Trust

bodi0`s Bots visits counter Maintenance & Trust

Maintenance Signals

WordPress version tested6.1.10

Last updatedSep 17, 2024

PHP min version

Downloads5K

Community Trust

Rating100/100

Number of ratings5

Active installs100

Alternatives

bodi0`s Bots visits counter Alternatives

ClickCease Click Fraud Protection

clickcease-click-fraud-protection

Protect your website and ad campaigns from bots, competitors, and click fraud with ClickCease's advanced fraud prevention and real-time monitoring.

10K 2 CVEs

Robots.txt Editor

robots-txt-editor

Robots.txt for WordPress

10K No CVEs

WPS Visitor Counter

wps-visitor-counter

Display website visitor statistics with widget, shortcode, and Gutenberg block support.

10K 1 unpatched

Better Robots.txt – AI-Ready Crawl Control & Bot Governance

better-robots-txt

Replace the default WordPress robots.txt workflow with a smarter, structured version you can preview before publishing, with Free, Pro, and Premium ed …

6K 2 CVEs

Spider Analyser – WordPress搜索引擎蜘蛛分析插件

spider-analyser

100

Spider Analyser是一款用于跟踪WordPress网站各种搜索引擎蜘蛛爬行日志的插件，并进行详细的蜘蛛爬行数据统计、蜘蛛行为分析、蜘蛛爬取分析及伪蜘蛛拦截等。

4K No CVEs

Developer Profile

bodi0`s Bots visits counter Developer Profile

Budiony Damyanov

1 plugin · 100 total installs

trust score

Avg Security Score

92/100

Avg Patch Time

30 days

View full developer profile

Detection Fingerprints

How We Detect bodi0`s Bots visits counter

Patterns used to identify this plugin on WordPress sites during automated security audits and web crawling.

Asset Fingerprints

Asset Paths

/wp-content/plugins/bodi0s-bots-visits-counter/css/bot-styles.css/wp-content/plugins/bodi0s-bots-visits-counter/js/bot-scripts.js

Script Paths

/wp-content/plugins/bodi0s-bots-visits-counter/js/bot-scripts.js

HTML / DOM Fingerprints

HTML Comments

FAQ