FattoreMamma Tools Security & Risk Analysis

wordpress.org/plugins/fm-tools

This plugin is reserved to FattoreMamma Active's users. This tool monitors blogposts performances, only if included in authorized FattoreMamma&#0 …

10 active installs v2.1.7 PHP + WP 4.0.0+ Updated Nov 6, 2019
private-network-tools
85
A · Safe
CVEs total0
Unpatched0
Last CVENever
Safety Verdict

Is FattoreMamma Tools Safe to Use in 2026?

Generally Safe

Score 85/100

FattoreMamma Tools has no known CVEs and is actively maintained. It's a solid choice for most WordPress installations.

No known CVEs Updated 6yr ago
Risk Assessment

The "fm-tools" plugin version 2.1.7 presents a generally good security posture, with no known vulnerabilities in its history and a strong adherence to security best practices in its code. The static analysis reveals no dangerous functions, no raw SQL queries, and all SQL queries utilize prepared statements, which is excellent. Furthermore, the absence of critical or high severity taint flows is reassuring, indicating that data is likely handled safely within the plugin.

However, there are a few areas that warrant attention. The low percentage of properly escaped output (40%) is a concern, as this could potentially lead to cross-site scripting (XSS) vulnerabilities if user-supplied data is directly outputted to the browser without adequate sanitization. The presence of external HTTP requests also introduces a potential attack vector if not handled securely, though the analysis doesn't provide details on their purpose or validation.

Despite these minor concerns, the overall security picture for "fm-tools" v2.1.7 is positive. The lack of historical vulnerabilities and the absence of critical code signals suggest a well-maintained and relatively secure plugin. The developers have implemented nonce checks and capability checks, which are crucial for securing WordPress components. The limited attack surface and zero unprotected entry points further contribute to its favorable security rating.

Key Concerns

  • Low output escaping percentage
  • External HTTP requests without detailed validation
Vulnerabilities
None known

FattoreMamma Tools Security Vulnerabilities

No known vulnerabilities — this is a good sign.
Version History

FattoreMamma Tools Release Timeline

v1.0
Code Analysis
Analyzed Apr 16, 2026

FattoreMamma Tools Code Analysis

Dangerous Functions
0
Raw SQL Queries
0
0 prepared
Unescaped Output
3
2 escaped
Nonce Checks
1
Capability Checks
2
File Operations
0
External Requests
3
Bundled Libraries
0

Output Escaping

40% escaped5 total outputs
Attack Surface

FattoreMamma Tools Attack Surface

Entry Points0
Unprotected0
WordPress Hooks 10
actionfm_tools_active_check_actionfm-tools.php:29
actionactivated_pluginfm-tools.php:38
actioninitfm-tools.php:39
actionadmin_initfm-tools.php:40
actiontemplate_redirectfm-tools.php:41
actionupgrader_process_completefm-tools.php:42
actionpublish_postincludes/class-fm-tools-admin.php:38
filterthe_contentincludes/class-fm-tools-public.php:31
actionadmin_menuincludes/class-fm-tools-settings.php:28
actionadmin_initincludes/class-fm-tools-settings.php:29

Scheduled Events 2

fm_tools_active_check_action
fm_tools_active_check_action
Maintenance & Trust

FattoreMamma Tools Maintenance & Trust

Maintenance Signals

WordPress version tested5.2.24
Last updatedNov 6, 2019
PHP min version
Downloads2K

Community Trust

Rating0/100
Number of ratings0
Active installs10
Alternatives

FattoreMamma Tools Alternatives

No alternatives data available yet.

Developer Profile

FattoreMamma Tools Developer Profile

colorinside

2 plugins · 10 total installs

84
trust score
Avg Security Score
85/100
Avg Patch Time
30 days
View full developer profile
Detection Fingerprints

How We Detect FattoreMamma Tools

Patterns used to identify this plugin on WordPress sites during automated security audits and web crawling.

Asset Fingerprints

HTML / DOM Fingerprints

Data Attributes
id="fm-tools-imprint"
Shortcode Output
<div id="fm-tools-imprint" style="display:none"><img alt="" src="//m93.it/pv/view/[blog_id]/[post_id]/[campaign_code]/[host]/[base64_encoded_permalink]"></div>
FAQ

Frequently Asked Questions about FattoreMamma Tools