Corona Virus Data Security & Risk Analysis
wordpress.org/plugins/corona-virus-dataThis plugin displays the Coronavirus case data through shortcodes [cov2019] [cov2019all] or [cov2019map] in your WordPress post or page.
Is Corona Virus Data Safe to Use in 2026?
Generally Safe
Score 92/100Corona Virus Data has no known CVEs and is actively maintained. It's a solid choice for most WordPress installations.
The 'corona-virus-data' plugin v1.4.3 exhibits a generally good security posture with no reported vulnerabilities or critical security findings in the static analysis.
The code analysis reveals a clean slate regarding dangerous functions, SQL injection, file operations, and external requests, all of which are positive indicators.
However, a significant concern arises from the lack of proper output escaping, with only 36% of identified outputs being correctly sanitized. This leaves a substantial portion of data displayed to users potentially vulnerable to cross-site scripting (XSS) attacks, especially when considering the 12 shortcodes which serve as entry points. While there are no direct indications of unsanitized taint flows or unprotected entry points in the provided data, the insufficient output escaping is a critical weakness that needs immediate attention. The absence of any historical vulnerabilities might suggest good development practices or simply a lack of prior scrutiny. Nevertheless, the current state points to a plugin that has strengths in many areas but is notably weak in output sanitization, presenting a moderate risk.
Key Concerns
- Low output escaping percentage
Corona Virus Data Security Vulnerabilities
Corona Virus Data Code Analysis
Output Escaping
Corona Virus Data Attack Surface
Shortcodes 12
WordPress Hooks 8
Maintenance & Trust
Corona Virus Data Maintenance & Trust
Maintenance Signals
Community Trust
Corona Virus Data Alternatives
South African COVID19 Banner
corona-virus-covid19-banner
Comply with new South African Covid-19 regulations requiring all websites ending in .ZA to show a link to the official government page.
VirusWeather Covid-19 Coronavirus
virusweather
Personalized by IP address PNG banner shows local covid-19 A.I. calculated threat level and live coronavirus stats for 10000+ local areas world-wide
COVID-19
covid-19
Campaign to raise public awareness about the importance of questions and answers about coronavirus disease (COVID-19).
Coronavirus Update
yatko-coronavirus
Coronavirus Update: WordPress Plugin and Widget with coronavirus tracker. Cases by country and by state. Free COVID-19 live update for WordPress.
Zone Pandemic Covid19
zone-pandemic-covid-19
This plugin provides shortcode and widgets that can displays the latest data of the covid19 in the whole world.
Corona Virus Data Developer Profile
1 plugin · 1K total installs
How We Detect Corona Virus Data
Patterns used to identify this plugin on WordPress sites during automated security audits and web crawling.
Asset Fingerprints
/wp-content/plugins/corona-virus-data/css/corona-virus-data-admin.css/wp-content/plugins/corona-virus-data/js/corona-virus-data-admin.js/wp-content/plugins/corona-virus-data/js/corona-virus-data.js/wp-content/plugins/corona-virus-data/js/corona-virus-data.jscorona-virus-data/css/corona-virus-data-admin.css?ver=corona-virus-data/js/corona-virus-data-admin.js?ver=corona-virus-data/js/corona-virus-data.js?ver=HTML / DOM Fingerprints
cov2019-data-table<!-- Corona Virus Data Widget Start --><!-- Corona Virus Data Widget End --><!-- Corona Virus Data All Data Widget Start --><!-- Corona Virus Data All Data Widget End -->data-map-tokencorona_virus_data_object[cov2019][cov2019all]