Does Embed Webmap have any unpatched vulnerabilities?

No. All known vulnerabilities in Embed Webmap have been patched as of the latest data update. Always keep the plugin updated to the latest version.

Is Embed Webmap compatible with WordPress 5.0.25?

According to WordPress.org data, Embed Webmap 2.0.4 has been tested up to WordPress 5.0.25. Check the plugin's changelog for the latest compatibility information.

How often is Embed Webmap updated?

Embed Webmap was last updated on Jan 28, 2019. Frequent updates are generally a positive security signal.

What is Embed Webmap's security score?

Embed Webmap has a WP-Safety security score of 85/100. This score is computed from CVE history, patch response time, developer trust signals, and plugin maintenance activity.

Embed Webmap Security & Risk Analysis

wordpress.org/plugins/embed-webmap

Embed a public webmap from ArcGIS Online into WordPress with a shortcode.

300 active installs v2.0.4 PHP + WP 3.5.1+ Updated Jan 28, 2019

arcgisgismapswebmap

A · Safe

CVEs total0

Unpatched0

Last CVENever

Plugin page Download

Safety Verdict

Is Embed Webmap Safe to Use in 2026?

Generally Safe

Score 85/100

Embed Webmap has no known CVEs and is actively maintained. It's a solid choice for most WordPress installations.

No known CVEs Updated 7yr ago

Risk Assessment

The "embed-webmap" plugin version 2.0.4 exhibits a strong security posture based on the provided static analysis. The absence of dangerous functions, SQL queries executed without prepared statements, and properly escaped output are all positive indicators. Furthermore, the plugin avoids file operations and external HTTP requests, minimizing potential attack vectors. The vulnerability history is completely clean, with no known CVEs, suggesting a well-maintained and secure codebase.

Despite these strengths, the analysis does reveal areas for potential improvement. While the total number of entry points is low, the presence of a shortcode without explicitly documented capability checks or nonce checks raises a minor concern. The static analysis also reports zero taint flows and zero unsanitized paths, which is excellent, but this could also be an artifact of the analysis not being able to effectively trace all possible data flows in this specific plugin. The overall lack of capability checks and nonce checks across the identified entry points, even though the attack surface is small, warrants attention for maximum security.

Key Concerns

Shortcode lacks explicit capability checks
Shortcode lacks explicit nonce checks

Vulnerabilities

None known

Embed Webmap Security Vulnerabilities

No known vulnerabilities — this is a good sign.

Code Analysis

Analyzed Mar 16, 2026

Embed Webmap Code Analysis

Dangerous Functions

Raw SQL Queries

0 prepared

Unescaped Output

0 escaped

Nonce Checks

Capability Checks

File Operations

External Requests

Bundled Libraries

Attack Surface

Embed Webmap Attack Surface

Entry Points1

Unprotected0

Shortcodes 1

[webmap] public\class-embed-webmap.php:66

WordPress Hooks 2

actionplugins_loadedembed-webmap.php:33

actioninitpublic\class-embed-webmap.php:64

Maintenance & Trust

Embed Webmap Maintenance & Trust

Maintenance Signals

WordPress version tested5.0.25

Last updatedJan 28, 2019

PHP min version

Downloads12K

Community Trust

Rating92/100

Number of ratings7

Active installs300

Alternatives

Embed Webmap Alternatives

Web Maps for WordPress

web-maps-for-wp

The Web Maps for WordPress plugin (aka. WebMaps for Wordpress) integrates the power of “where” into your pages and posts with interactive maps exposin …

200 No CVEs

Mapster WP Maps

mapster-wp-maps

Mapster WP Maps is the smoothest, easiest way to make maps for your site. No API keys required.

3K 4 CVEs

GPSies Embed

gpsiesembed

Add GPSies Maps to your posts and pages.(Only for WordPress 2.5+)

10 No CVEs

Ninja Forms – The Contact Form Builder That Grows With You

ninja-forms

The 100% beginner friendly WordPress form builder. Drag & drop form fields to build beautiful, professional contact forms in minutes.

600K 75 CVEs

WP Go Maps (formerly WP Google Maps)

wp-google-maps

The easiest to use Google maps plugin! Create a custom Google map, map block, store locator or map widget with high quality markers containing categor …

300K 23 CVEs

Developer Profile

Embed Webmap Developer Profile

gavinr

4 plugins · 420 total installs

trust score

Avg Security Score

85/100

Avg Patch Time

30 days

View full developer profile

Detection Fingerprints

How We Detect Embed Webmap

Patterns used to identify this plugin on WordPress sites during automated security audits and web crawling.

Asset Fingerprints

Asset Paths

/wp-content/plugins/embed-webmap/public/js/embed-webmap.js/wp-content/plugins/embed-webmap/public/css/embed-webmap.css

Script Paths

/wp-content/plugins/embed-webmap/public/js/embed-webmap.js

Version Parameters

embed-webmap/public/css/embed-webmap.css?ver=embed-webmap/public/js/embed-webmap.js?ver=

HTML / DOM Fingerprints

CSS Classes

webmap-widget-map

Data Attributes

webmapwidthheightextentthemealt_basemap+1 more

Shortcode Output

<iframe class="webmap-widget-map"<br /><small><a href="

FAQ