
FattoreMamma Tools Security & Risk Analysis
wordpress.org/plugins/fm-toolsThis plugin is reserved to FattoreMamma Active's users. This tool monitors blogposts performances, only if included in authorized FattoreMamma� …
Is FattoreMamma Tools Safe to Use in 2026?
Generally Safe
Score 85/100FattoreMamma Tools has no known CVEs and is actively maintained. It's a solid choice for most WordPress installations.
The "fm-tools" plugin version 2.1.7 presents a generally good security posture, with no known vulnerabilities in its history and a strong adherence to security best practices in its code. The static analysis reveals no dangerous functions, no raw SQL queries, and all SQL queries utilize prepared statements, which is excellent. Furthermore, the absence of critical or high severity taint flows is reassuring, indicating that data is likely handled safely within the plugin.
However, there are a few areas that warrant attention. The low percentage of properly escaped output (40%) is a concern, as this could potentially lead to cross-site scripting (XSS) vulnerabilities if user-supplied data is directly outputted to the browser without adequate sanitization. The presence of external HTTP requests also introduces a potential attack vector if not handled securely, though the analysis doesn't provide details on their purpose or validation.
Despite these minor concerns, the overall security picture for "fm-tools" v2.1.7 is positive. The lack of historical vulnerabilities and the absence of critical code signals suggest a well-maintained and relatively secure plugin. The developers have implemented nonce checks and capability checks, which are crucial for securing WordPress components. The limited attack surface and zero unprotected entry points further contribute to its favorable security rating.
Key Concerns
- Low output escaping percentage
- External HTTP requests without detailed validation
FattoreMamma Tools Security Vulnerabilities
FattoreMamma Tools Release Timeline
FattoreMamma Tools Code Analysis
Output Escaping
FattoreMamma Tools Attack Surface
WordPress Hooks 10
Scheduled Events 2
Maintenance & Trust
FattoreMamma Tools Maintenance & Trust
Maintenance Signals
Community Trust
FattoreMamma Tools Alternatives
No alternatives data available yet.
FattoreMamma Tools Developer Profile
2 plugins · 10 total installs
How We Detect FattoreMamma Tools
Patterns used to identify this plugin on WordPress sites during automated security audits and web crawling.
Asset Fingerprints
HTML / DOM Fingerprints
id="fm-tools-imprint"<div id="fm-tools-imprint" style="display:none"><img alt="" src="//m93.it/pv/view/[blog_id]/[post_id]/[campaign_code]/[host]/[base64_encoded_permalink]"></div>