Does BrenWP Client Safe Mode have any unpatched vulnerabilities?

No published vulnerabilities and no findings under coordinated disclosure as of the latest data update. Always keep the plugin updated to the latest version.

Is BrenWP Client Safe Mode compatible with WordPress 6.9.4?

According to WordPress.org data, BrenWP Client Safe Mode 1.7.2 has been tested up to WordPress 6.9.4. Check the plugin's changelog for the latest compatibility information.

Is BrenWP Client Safe Mode compatible with PHP 7.4+?

BrenWP Client Safe Mode requires PHP 7.4 or higher. Most modern WordPress hosts run PHP 8.1 or 8.2. If you are on an older PHP version, consider upgrading before installing this plugin.

How often is BrenWP Client Safe Mode updated?

BrenWP Client Safe Mode was last updated on Jan 6, 2026. Frequent updates are generally a positive security signal.

What is BrenWP Client Safe Mode's security score?

BrenWP Client Safe Mode has a WP-Safety security score of 100/100. This score is computed from CVE history, patch response time, developer trust signals, and plugin maintenance activity.

BrenWP Client Safe Mode Security & Risk Analysis

wordpress.org/plugins/brenwp-client-safe-mode

Per-user Safe Mode plus role-based client restrictions for safer troubleshooting and cleaner client handoff.

0 active installs v1.7.2 PHP 7.4+ WP 6.0+ Updated Jan 6, 2026

clienthardeningrestrictionssecuritytroubleshooting

A · Safe

CVEs total0

Unpatched0

Last CVENever

Plugin page Download

Safety Verdict

Is BrenWP Client Safe Mode Safe to Use in 2026?

Generally Safe

Score 100/100

BrenWP Client Safe Mode has no known CVEs and is actively maintained. It's a solid choice for most WordPress installations.

No known CVEs Updated 4mo ago

Risk Assessment

The brenwp-client-safe-mode plugin version 1.7.2 exhibits a generally strong security posture based on the provided static analysis. The code demonstrates excellent practices in SQL query handling, with 100% usage of prepared statements, and a high rate of properly escaped output. The plugin also incorporates a good number of nonce and capability checks, suggesting an awareness of common WordPress security vulnerabilities. Furthermore, the absence of any recorded vulnerabilities in its history, including critical or high severity issues, is a very positive indicator. The taint analysis also shows no critical or high severity flows with unsanitized paths, reinforcing the impression of robust code hygiene.

Key Concerns

AJAX handlers without authentication checks

Vulnerabilities

None known

BrenWP Client Safe Mode Security Vulnerabilities

No known vulnerabilities — this is a good sign.

Version History

BrenWP Client Safe Mode Release Timeline

v1.7.2Current

v1.7.1

Code Analysis

Analyzed Apr 16, 2026

BrenWP Client Safe Mode Code Analysis

Dangerous Functions

Raw SQL Queries

0 prepared

Unescaped Output

708 escaped

Nonce Checks

Capability Checks

File Operations

External Requests

Bundled Libraries

Output Escaping

99% escaped713 total outputs

Data Flows · Security

All sanitized

Data Flow Analysis

2 flows

handle_import_settings (includes/admin/traits/trait-brenwp-csm-admin-actions.php:554)

Source (user input) Sink (dangerous op) Sanitizer Transform Unsanitized Sanitized

Attack Surface

2 unprotected

BrenWP Client Safe Mode Attack Surface

Entry Points2

Unprotected2

AJAX Handlers 2

authwp_ajax_brenwp_csm_user_searchincludes/admin/class-brenwp-csm-admin.php:60

authwp_ajax_brenwp_csm_user_search_safe_modeincludes/admin/class-brenwp-csm-admin.php:61

WordPress Hooks 45

actionplugins_loadedbrenwp-client-safe-mode.php:41

actionadmin_menuincludes/admin/class-brenwp-csm-admin.php:44

actionadmin_initincludes/admin/class-brenwp-csm-admin.php:45

actionadmin_initincludes/admin/class-brenwp-csm-admin.php:46

filteroption_page_capability_brenwp_csmincludes/admin/class-brenwp-csm-admin.php:47

actionadmin_enqueue_scriptsincludes/admin/class-brenwp-csm-admin.php:49

actionadmin_post_brenwp_csm_toggle_enabledincludes/admin/class-brenwp-csm-admin.php:51

actionadmin_post_brenwp_csm_clear_logincludes/admin/class-brenwp-csm-admin.php:52

actionadmin_post_brenwp_csm_export_logincludes/admin/class-brenwp-csm-admin.php:53

actionadmin_post_brenwp_csm_export_settingsincludes/admin/class-brenwp-csm-admin.php:54

actionadmin_post_brenwp_csm_apply_presetincludes/admin/class-brenwp-csm-admin.php:56

actionadmin_post_brenwp_csm_reset_defaultsincludes/admin/class-brenwp-csm-admin.php:57

actionadmin_post_brenwp_csm_import_settingsincludes/admin/class-brenwp-csm-admin.php:58

actionadmin_noticesincludes/admin/class-brenwp-csm-admin.php:62

filteruser_has_capincludes/class-brenwp-csm-restrictions.php:59

actionadmin_menuincludes/class-brenwp-csm-restrictions.php:62

actionadmin_initincludes/class-brenwp-csm-restrictions.php:65

actionadmin_initincludes/class-brenwp-csm-restrictions.php:66

actionadmin_bar_menuincludes/class-brenwp-csm-restrictions.php:69

filtershow_admin_barincludes/class-brenwp-csm-restrictions.php:70

filterfile_mod_allowedincludes/class-brenwp-csm-restrictions.php:73

actionpre_get_postsincludes/class-brenwp-csm-restrictions.php:76

filterajax_query_attachments_argsincludes/class-brenwp-csm-restrictions.php:77

actionadmin_noticesincludes/class-brenwp-csm-restrictions.php:80

actionadmin_noticesincludes/class-brenwp-csm-restrictions.php:84

actionadmin_noticesincludes/class-brenwp-csm-restrictions.php:85

actionadmin_enqueue_scriptsincludes/class-brenwp-csm-restrictions.php:86

actioncurrent_screenincludes/class-brenwp-csm-restrictions.php:87

filterscreen_options_show_screenincludes/class-brenwp-csm-restrictions.php:88

filterwp_is_application_passwords_available_for_userincludes/class-brenwp-csm-restrictions.php:91

actionwp_dashboard_setupincludes/class-brenwp-csm-restrictions.php:94

actionuser_profile_update_errorsincludes/class-brenwp-csm-restrictions.php:97

actionadmin_enqueue_scriptsincludes/class-brenwp-csm-restrictions.php:98

actionadmin_post_brenwp_csm_dismiss_twofa_noticeincludes/class-brenwp-csm-restrictions.php:101

actionadmin_post_brenwp_csm_toggle_safe_modeincludes/class-brenwp-csm-safe-mode.php:41

actionadmin_post_brenwp_csm_admin_set_safe_modeincludes/class-brenwp-csm-safe-mode.php:42

actionadmin_bar_menuincludes/class-brenwp-csm-safe-mode.php:43

actionadmin_noticesincludes/class-brenwp-csm-safe-mode.php:44

actionwp_enqueue_scriptsincludes/class-brenwp-csm-safe-mode.php:45

actioninitincludes/class-brenwp-csm.php:121

filterxmlrpc_enabledincludes/class-brenwp-csm.php:125

filterwp_headersincludes/class-brenwp-csm.php:126

actionadmin_initincludes/class-brenwp-csm.php:129

filterwp_privacy_personal_data_exportersincludes/class-brenwp-csm.php:130

filterwp_privacy_personal_data_erasersincludes/class-brenwp-csm.php:131

Maintenance & Trust

BrenWP Client Safe Mode Maintenance & Trust

Maintenance Signals

WordPress version tested6.9.4

Last updatedJan 6, 2026

PHP min version7.4

Downloads334

Community Trust

Rating0/100

Number of ratings0

Active installs0

Alternatives

BrenWP Client Safe Mode Alternatives

NETSENSAI Shield

netsensai-shield

100

Hardens and protects your site by locking down login, REST API, XML‑RPC, file editor, and applying HTTP security headers.

1K No CVEs

SAR One Click Security

sar-one-click-security

Adds some extra security to your WordPress with only one click.

200 No CVEs

Security Hardener

security-hardener

100

Basic hardening: secure headers, login honeypot, user enumeration blocking, generic login errors, rate limiting, and more.

200 No CVEs

Dessky Security

dessky-security

100

Dessky Security is the ultralight plugin for basic Security Hardening. It is specially designed not to drain any resources from your website.

100 No CVEs

Secure HTTP Headers

secure-http-headers

Secure HTTP headers - Essential, and easy.

100 No CVEs

Developer Profile

BrenWP Client Safe Mode Developer Profile

Brendigo

2 plugins · 0 total installs

trust score

Avg Security Score

100/100

Avg Patch Time

30 days

View full developer profile

Detection Fingerprints

How We Detect BrenWP Client Safe Mode

Patterns used to identify this plugin on WordPress sites during automated security audits and web crawling.

Asset Fingerprints

Asset Paths

/wp-content/plugins/brenwp-client-safe-mode/assets/admin.css/wp-content/plugins/brenwp-client-safe-mode/assets/admin.js/wp-content/plugins/brenwp-client-safe-mode/assets/adminbar.js

Script Paths

/wp-content/plugins/brenwp-client-safe-mode/assets/adminbar.js/wp-content/plugins/brenwp-client-safe-mode/assets/admin.js

Version Parameters

brenwp-client-safe-mode/assets/admin.css?ver=brenwp-client-safe-mode/assets/admin.js?ver=brenwp-client-safe-mode/assets/adminbar.js?ver=

HTML / DOM Fingerprints

JS Globals

BrenWPCSMAdminBarBrenWPCSMAdmin

FAQ