Does Counter WordPress have any unpatched vulnerabilities?

No. All known vulnerabilities in Counter WordPress have been patched as of the latest data update. Always keep the plugin updated to the latest version.

Is Counter WordPress compatible with WordPress 5.3.21?

According to WordPress.org data, Counter WordPress 3.2.1.6 has been tested up to WordPress 5.3.21. Check the plugin's changelog for the latest compatibility information.

How often is Counter WordPress updated?

Counter WordPress was last updated on Mar 27, 2020. Frequent updates are generally a positive security signal.

What is Counter WordPress's security score?

Counter WordPress has a WP-Safety security score of 85/100. This score is computed from CVE history, patch response time, developer trust signals, and plugin maintenance activity.

Counter WordPress Security & Risk Analysis

wordpress.org/plugins/counter-wpmenir

Need a Analytics for your stuff. this is what exactly you want.

10 active installs v3.2.1.6 PHP + WP 4.0.1+ Updated Mar 27, 2020

countcounterpagepostproduct

A · Safe

CVEs total0

Unpatched0

Last CVENever

Plugin page Download

Safety Verdict

Is Counter WordPress Safe to Use in 2026?

Generally Safe

Score 85/100

Counter WordPress has no known CVEs and is actively maintained. It's a solid choice for most WordPress installations.

No known CVEs Updated 6yr ago

Risk Assessment

The "counter-wpmenir" plugin version 3.2.1.6 presents a mixed security profile. On the positive side, there are no recorded vulnerabilities in its history, suggesting a relatively stable past. The static analysis shows a small attack surface, primarily consisting of a single shortcode, with no AJAX handlers or REST API routes exposed without authentication. Furthermore, all SQL queries are prepared, and there are no file operations or external HTTP requests, which are generally good security practices.

However, a significant concern arises from the output escaping. 100% of the outputs are not properly escaped, indicating a high risk of Cross-Site Scripting (XSS) vulnerabilities. This means that any data rendered by the plugin, if not carefully handled by the theme or other plugins, could be manipulated by an attacker to inject malicious scripts. While there are no critical taint flows or dangerous functions identified, and capability checks are present, the lack of proper output sanitization is a substantial weakness that needs immediate attention. The absence of nonce checks is also a concern, though its impact is mitigated by the lack of unprotected AJAX handlers.

Key Concerns

No proper output escaping found
No nonce checks found

Vulnerabilities

None known

Counter WordPress Security Vulnerabilities

No known vulnerabilities — this is a good sign.

Code Analysis

Analyzed Mar 17, 2026

Counter WordPress Code Analysis

Dangerous Functions

Raw SQL Queries

0 prepared

Unescaped Output

0 escaped

Nonce Checks

Capability Checks

File Operations

External Requests

Bundled Libraries

Output Escaping

0% escaped11 total outputs

Attack Surface

Counter WordPress Attack Surface

Entry Points1

Unprotected0

Shortcodes 1

[Counter_wpmen_3333] old.version.php:15

WordPress Hooks 3

actionadmin_menuclass\cw.core.php:19

actionadmin_initclass\cw.core.php:20

actionplugins_loadedcw.init.php:36

Maintenance & Trust

Counter WordPress Maintenance & Trust

Maintenance Signals

WordPress version tested5.3.21

Last updatedMar 27, 2020

PHP min version

Downloads2K

Community Trust

Rating100/100

Number of ratings1

Active installs10

Alternatives

Counter WordPress Alternatives

Post Views Counter

post-views-counter

Post Views Counter allows you to collect and display how many times a post, page, or other content has been viewed in a simple, fast and reliable way.

200K 2 CVEs

Posts and Products Views for WooCommerce

posts-and-products-views

Track and display the view counts of WordPress posts and WooCommerce products in the admin panel and via shortcode.

100 1 CVE

GA-PVcounter

ga-pvcounter

Google Analytics PageView counter and Popular posts, Recent posts widget

10 No CVEs

KOFT Post Hits Counter

kofthitscounter

KOFT Post Hits Counter displays the number of hits / views on each of page or post. A simple count indicates how many times a page has been accessed

10 No CVEs

MCB – Stats

mcb-stats

MCB Stats collects statistics of users who access to the front part of wordpress, MCB Stast is capable of collecting the total amount of time a user s …

10 No CVEs

Developer Profile

Counter WordPress Developer Profile

sadegh3333

2 plugins · 40 total installs

trust score

Avg Security Score

85/100

Avg Patch Time

30 days

View full developer profile

Detection Fingerprints

How We Detect Counter WordPress

Patterns used to identify this plugin on WordPress sites during automated security audits and web crawling.

Asset Fingerprints

Asset Paths

/wp-content/plugins/counter-wpmenir/admin/master.css/wp-content/plugins/counter-wpmenir/admin/master.js

Script Paths

/wp-content/plugins/counter-wpmenir/admin/master.js

Version Parameters

counter-wpmenir/admin/master.css?ver=counter-wpmenir/admin/master.js?ver=

HTML / DOM Fingerprints

Shortcode Output

show_count

FAQ

Counter WordPress Security & Risk Analysis

Is Counter WordPress Safe to Use in 2026?

Generally Safe

Key Concerns

Counter WordPress Security Vulnerabilities

Counter WordPress Code Analysis

Output Escaping

Counter WordPress Attack Surface

Shortcodes 1

Counter WordPress Maintenance & Trust

Maintenance Signals

Community Trust

Counter WordPress Alternatives

Post Views Counter

Posts and Products Views for WooCommerce

GA-PVcounter

KOFT Post Hits Counter

MCB – Stats

Counter WordPress Developer Profile

How We Detect Counter WordPress

Asset Fingerprints

HTML / DOM Fingerprints

Frequently Asked Questions about Counter WordPress