Does Device Detect have any unpatched vulnerabilities?

No. All known vulnerabilities in Device Detect have been patched as of the latest data update. Always keep the plugin updated to the latest version.

Is Device Detect compatible with WordPress 6.9.4?

According to WordPress.org data, Device Detect 2.0.1 has been tested up to WordPress 6.9.4. Check the plugin's changelog for the latest compatibility information.

Is Device Detect compatible with PHP 5.3+?

Device Detect requires PHP 5.3 or higher. Most modern WordPress hosts run PHP 8.1 or 8.2. If you are on an older PHP version, consider upgrading before installing this plugin.

How often is Device Detect updated?

Device Detect was last updated on Dec 15, 2025. Frequent updates are generally a positive security signal.

What is Device Detect's security score?

Device Detect has a WP-Safety security score of 100/100. This score is computed from CVE history, patch response time, developer trust signals, and plugin maintenance activity.

Device Detect Security & Risk Analysis

wordpress.org/plugins/device-detect

Allows you to detect the device of the user, and to display some contents only for the phones, tablets or computers.

20 active installs v2.0.1 PHP 5.3+ WP 4.6+ Updated Dec 15, 2025

contentdetectdetectiondevicemobile

A · Safe

CVEs total0

Unpatched0

Last CVENever

Plugin page Download

Safety Verdict

Is Device Detect Safe to Use in 2026?

Generally Safe

Score 100/100

Device Detect has no known CVEs and is actively maintained. It's a solid choice for most WordPress installations.

No known CVEs Updated 3mo ago

Risk Assessment

The "device-detect" plugin v2.0.1 exhibits a generally positive security posture based on the static analysis. The absence of any identified dangerous functions, raw SQL queries, file operations, external HTTP requests, and the limited attack surface (zero entry points) are all strong indicators of good security practices. The plugin also has no recorded vulnerabilities, which further strengthens its perceived security. However, a significant concern arises from the output escaping. With 4 total outputs and 0% properly escaped, this indicates a high risk of cross-site scripting (XSS) vulnerabilities. Any user-supplied data that is reflected in the plugin's output without proper sanitization could be exploited by an attacker to inject malicious scripts, potentially leading to session hijacking or other harmful actions. While the plugin appears robust in many areas, this lack of output escaping is a critical weakness that needs immediate attention.

Key Concerns

Output escaping is not implemented

Vulnerabilities

None known

Device Detect Security Vulnerabilities

No known vulnerabilities — this is a good sign.

Code Analysis

Analyzed Mar 16, 2026

Device Detect Code Analysis

Dangerous Functions

Raw SQL Queries

0 prepared

Unescaped Output

0 escaped

Nonce Checks

Capability Checks

File Operations

External Requests

Bundled Libraries

Output Escaping

0% escaped4 total outputs

Attack Surface

Device Detect Attack Surface

Entry Points0

Unprotected0

WordPress Hooks 4

actionadd_meta_boxesadmin.php:22

filterplugin_row_metaadmin.php:30

filterwp_is_mobiledevice-detect.php:56

filterwp_is_mobiledevice-detect.php:122

Maintenance & Trust

Device Detect Maintenance & Trust

Maintenance Signals

WordPress version tested6.9.4

Last updatedDec 15, 2025

PHP min version5.3

Downloads5K

Community Trust

Rating100/100

Number of ratings1

Active installs20

Alternatives

Device Detect Alternatives

Device Detector

device-detector

Full featured analytics reporting and management tool that detects all devices accessing your WordPress site.

600 1 CVE

Any Mobile Theme Switcher

any-mobile-theme-switcher

This Plugin detects mobile browser and display the theme as the setting done from admin. Usefull for switch to Mobile Theme.

20K No CVEs

Mobile Detector

mobile-detector

Lightweight detector of mobile devices, OSs & browsers. Optionally a mobile theme switcher.

300 No CVEs

Originality.ai AI Checker

originality-ai

AI content detection tool for WordPress. Scan posts for AI-generated content with multiple detection models.

300 1 unpatched

WP Browser/Platform Detection

wp-browser-platform-detection

This plugin will append CSS classes in default WordPress body class. You can get browser name, Operating System and actual device name.

100 No CVEs

Developer Profile

Device Detect Developer Profile

Kleor

4 plugins · 1K total installs

trust score

Avg Security Score

92/100

Avg Patch Time

64 days

View full developer profile

Detection Fingerprints

How We Detect Device Detect

Patterns used to identify this plugin on WordPress sites during automated security audits and web crawling.

Asset Fingerprints

Asset Paths

/wp-content/plugins/device-detect/admin.php/wp-content/plugins/device-detect/device-detect.php

HTML / DOM Fingerprints

JS Globals

DEVICE_DETECT_PATHDEVICE_DETECT_URLDEVICE_DETECT_FOLDERDEVICE_DETECT_CUSTOM_FILES_PATHDEVICE_DETECT_CUSTOM_FILES_URLDEVICE_DETECT_VERSION+1 more

Shortcode Output

[computer-content][computer-content1][computer-content2][computer-content3]

FAQ