WP-Safety

BoonRisk – Site Security Check & Report Security & Risk Analysis

wordpress.org/plugins/boonrisk-site-security-check-report

Security posture report for WordPress — 30+ checks, prioritized risks, and a printable report. Get a clear picture in minutes.

0 active installs v1.0.2 PHP 7.4+ WP 5.0+ Updated Feb 16, 2026
audithardeningsecuritysite-healthvulnerability
100
A · Safe
CVEs total0
Unpatched0
Last CVENever
Plugin page Download
Safety Verdict

Is BoonRisk – Site Security Check & Report Safe to Use in 2026?

Generally Safe

Score 100/100

BoonRisk – Site Security Check & Report has no known CVEs and is actively maintained. It's a solid choice for most WordPress installations.

No known CVEs Updated 2mo ago
Risk Assessment

The boonrisk-site-security-check-report plugin v1.0.2 exhibits a generally good security posture with no reported vulnerabilities in its history and strong implementation of security best practices in its static analysis. All identified entry points (7 AJAX handlers) correctly implement nonce and capability checks, indicating a robust defense against unauthorized access. Furthermore, all output appears to be properly escaped, mitigating the risk of cross-site scripting (XSS) vulnerabilities. The absence of dangerous functions, file operations, and critical taint flows further strengthens its security profile.

Key Concerns

  • SQL queries without prepared statements
  • External HTTP requests
Vulnerabilities
None known

BoonRisk – Site Security Check & Report Security Vulnerabilities

No known vulnerabilities — this is a good sign.
Version History

BoonRisk – Site Security Check & Report Release Timeline

v1.0.2Current
Code Analysis
Analyzed Mar 17, 2026

BoonRisk – Site Security Check & Report Code Analysis

Dangerous Functions
0
Raw SQL Queries
2
0 prepared
Unescaped Output
0
171 escaped
Nonce Checks
7
Capability Checks
7
File Operations
0
External Requests
2
Bundled Libraries
0

SQL Query Safety

0% prepared2 total queries

Output Escaping

100% escaped171 total outputs
Data Flows · Security
All sanitized

Data Flow Analysis

2 flows
ajax_save_api_key (boonrisk-agent.php:429)
Source (user input) Sink (dangerous op) Sanitizer Transform Unsanitized Sanitized
Attack Surface

BoonRisk – Site Security Check & Report Attack Surface

Entry Points7
Unprotected0

AJAX Handlers 7

authwp_ajax_boonrisk_local_assessmentboonrisk-agent.php:69
authwp_ajax_boonrisk_test_connectionboonrisk-agent.php:70
authwp_ajax_boonrisk_app_analysisboonrisk-agent.php:71
authwp_ajax_boonrisk_save_api_keyboonrisk-agent.php:72
authwp_ajax_boonrisk_remove_api_keyboonrisk-agent.php:73
authwp_ajax_boonrisk_toggle_auto_syncboonrisk-agent.php:74
authwp_ajax_boonrisk_manual_syncboonrisk-agent.php:75
WordPress Hooks 4
actionadmin_menuboonrisk-agent.php:64
actionadmin_initboonrisk-agent.php:65
actionadmin_enqueue_scriptsboonrisk-agent.php:66
actionplugins_loadedboonrisk-agent.php:593
Maintenance & Trust

BoonRisk – Site Security Check & Report Maintenance & Trust

Maintenance Signals

WordPress version tested6.9.4
Last updatedFeb 16, 2026
PHP min version7.4
Downloads171

Community Trust

Rating0/100
Number of ratings0
Active installs0
Alternatives

BoonRisk – Site Security Check & Report Alternatives

WPVulnerability

WPVulnerability

wpvulnerability

A
99

Get WordPress vulnerability alerts from the WPVulnerability Database API.

10K 1 CVE
SiteLock Security – WP Hardening, Login Security & Malware Scans

SiteLock Security – WP Hardening, Login Security & Malware Scans

sitelock

A
98

Free, lightweight WordPress security. Harden your site with login protection & 2FA, see Site Health clearly and run on-demand checks—setup in minutes.

1K 2 CVEs
Resilience Compliance Manager

Resilience Compliance Manager

resilience-compliance-manager

A
100

CRA compliance for WordPress developers. Checklist, document generator, vulnerability scanner, and incident reporting for the 2026 EU deadline.

0 No CVEs
Activity Log – Monitor & Record User Changes

Activity Log – Monitor & Record User Changes

aryo-activity-log

A
85

This top rated Activity Log plugin helps you monitor & log all changes and actions on your WordPress site, so you can remain secure and organized.

200K 9 CVEs
Patchstack – WordPress & Plugins Security

Patchstack – WordPress & Plugins Security

patchstack

A
100

Patchstack automatically identifies and mitigates security vulnerabilities in WordPress plugins, themes, and core.

40K No CVEs
Developer Profile

BoonRisk – Site Security Check & Report Developer Profile

Boon Band

1 plugin · 0 total installs

94
trust score
Avg Security Score
100/100
Avg Patch Time
30 days
View full developer profile
Detection Fingerprints

How We Detect BoonRisk – Site Security Check & Report

Patterns used to identify this plugin on WordPress sites during automated security audits and web crawling.

Asset Fingerprints

Asset Paths
/wp-content/plugins/boonrisk-site-security-check-report/assets/css/boonrisk-admin.css/wp-content/plugins/boonrisk-site-security-check-report/assets/js/boonrisk-admin.js
Version Parameters
boonrisk-site-security-check-report/assets/css/boonrisk-admin.css?ver=boonrisk-site-security-check-report/assets/js/boonrisk-admin.js?ver=

HTML / DOM Fingerprints

HTML Comments
<!-- BoonRisk Admin Menu --><!-- BoonRisk Dashboard Page --><!-- BoonRisk Local Assessment Page --><!-- BoonRisk Data & Monitoring Page -->+5 more
JS Globals
boonrisk_ajax_object
FAQ

Frequently Asked Questions about BoonRisk – Site Security Check & Report