Does Earthquake Monitor have any unpatched vulnerabilities?

No. All known vulnerabilities in Earthquake Monitor have been patched as of the latest data update. Always keep the plugin updated to the latest version.

Is Earthquake Monitor compatible with WordPress 5.5.0?

According to WordPress.org data, Earthquake Monitor 2.0.4 has been tested up to WordPress 5.5.0. Check the plugin's changelog for the latest compatibility information.

Is Earthquake Monitor compatible with PHP 5.3+?

Earthquake Monitor requires PHP 5.3 or higher. Most modern WordPress hosts run PHP 8.1 or 8.2. If you are on an older PHP version, consider upgrading before installing this plugin.

How often is Earthquake Monitor updated?

Earthquake Monitor was last updated on Mar 31, 2020. Frequent updates are generally a positive security signal.

What is Earthquake Monitor's security score?

Earthquake Monitor has a WP-Safety security score of 85/100. This score is computed from CVE history, patch response time, developer trust signals, and plugin maintenance activity.

Earthquake Monitor Security & Risk Analysis

wordpress.org/plugins/earthquakemonitor

Earthquake Monitor is a customizable widget that shows an overview of earthquakes around the world from the U.S. Geological Surveys data.

50 active installs v2.0.4 PHP 5.3+ WP 5.0.0+ Updated Mar 31, 2020

earthquakegeologicalmonitorwidget

A · Safe

CVEs total0

Unpatched0

Last CVENever

Plugin page Download

Safety Verdict

Is Earthquake Monitor Safe to Use in 2026?

Generally Safe

Score 85/100

Earthquake Monitor has no known CVEs and is actively maintained. It's a solid choice for most WordPress installations.

No known CVEs Updated 6yr ago

Risk Assessment

The earthquakemonitor v2.0.4 plugin exhibits a generally good security posture based on the provided static analysis and vulnerability history. The absence of any known CVEs, unpatched vulnerabilities, or critical taint flows is a significant strength. The code analysis reveals a limited attack surface with only one shortcode and no unprotected AJAX handlers or REST API routes. Furthermore, the plugin shows a commendable effort in using prepared statements for SQL queries (88%).

However, there are areas for improvement. A notable concern is the low percentage of properly escaped output (21%). This indicates a potential risk of cross-site scripting (XSS) vulnerabilities if user-supplied data is displayed without sufficient sanitization. The lack of nonce checks and capability checks on any entry points, although currently not presenting an immediate threat due to the limited attack surface, represents a missed opportunity to harden the plugin against potential future exploitation. The presence of file operations without further context also warrants caution. Overall, while the plugin is not actively known to be vulnerable, the inadequate output escaping is the primary area of concern that requires attention to ensure a more robust security profile.

Key Concerns

Low percentage of properly escaped output
No capability checks on entry points
No nonce checks on entry points

Vulnerabilities

None known

Earthquake Monitor Security Vulnerabilities

No known vulnerabilities — this is a good sign.

Code Analysis

Analyzed Mar 16, 2026

Earthquake Monitor Code Analysis

Dangerous Functions

Raw SQL Queries

7 prepared

Unescaped Output

17 escaped

Nonce Checks

Capability Checks

File Operations

External Requests

Bundled Libraries

SQL Query Safety

88% prepared8 total queries

Output Escaping

21% escaped82 total outputs

Attack Surface

Earthquake Monitor Attack Surface

Entry Points1

Unprotected0

Shortcodes 1

[eqmonitor] EarthquakeMonitor.php:756

WordPress Hooks 8

actionplugins_loadedEarthquakeMonitor.php:83

actionupdated_optionEarthquakeMonitor.php:758

actionadmin_noticesEarthquakeMonitor.php:762

actionadmin_noticesEarthquakeMonitor.php:766

actionwidgets_initEarthquakeMonitor.php:772

actionwidgets_initEarthquakeMonitor.php:773

actionwidgets_initEarthquakeMonitor.php:774

actionplugins_loadedEarthquakeMonitor.php:776

Maintenance & Trust

Earthquake Monitor Maintenance & Trust

Maintenance Signals

WordPress version tested5.5.0

Last updatedMar 31, 2020

PHP min version5.3

Downloads6K

Community Trust

Rating100/100

Number of ratings3

Active installs50

Alternatives

Earthquake Monitor Alternatives

Campaign Monitor Forms by Optin Cat

campaign-monitor-wp

Campaign Monitor Forms by Optin Cat For WordPress Helps You Get More Email Subscribers. Create Beautiful Campaign Monitor Forms In 2 Minutes.

200 2 CVEs

Uptime Robot Widget

uptime-robot-widget

A simple widget that shows the status of the monitored services in the Uptime Robot service.

80 No CVEs

Uptime Robot

uptime-robot-by-utopian-themes

A simple WordPress dashboard widget that shows you the current uptime stats of your Uptime Robot monitored websites.

50 No CVEs

Air Quality Plugin

air-quality

This plugin was made mainly to display air quality from closest air pollution detector

30 No CVEs

Admin's Debug Tool

admins-debug-tool

Admin-only tool for checking execution times and error output of current theme/plugins

10 No CVEs

Developer Profile

Earthquake Monitor Developer Profile

Cris van Geel

2 plugins · 50 total installs

trust score

Avg Security Score

85/100

Avg Patch Time

30 days

View full developer profile

Detection Fingerprints

How We Detect Earthquake Monitor

Patterns used to identify this plugin on WordPress sites during automated security audits and web crawling.

Asset Fingerprints

Asset Paths

/wp-content/plugins/earthquakemonitor/css/style.css

HTML / DOM Fingerprints

CSS Classes

widget_earthquakemonitor

Data Attributes

id="earthquakemonitor"name="earthquakemonitor"id="earthquake_db_version"

JS Globals

window.earthquake_widget_version

Shortcode Output

[earthquakemonitor]

FAQ