WP-Safety

GAinWP Google Analytics Integration for WordPress Security & Risk Analysis

wordpress.org/plugins/ga-in

Enable Google Analytics tracking and reporting dashboards in your WordPress site in just seconds.

9K active installs v5.4.6 PHP 5.2.4+ WP 3.5+ Updated Sep 10, 2020
analyticsgoogle-analyticsgoogle-analytics-codegoogle-analytics-dashboardgoogle-analytics-plugin
85
A · Safe
CVEs total0
Unpatched0
Last CVENever
Plugin page Download
Safety Verdict

Is GAinWP Google Analytics Integration for WordPress Safe to Use in 2026?

Generally Safe

Score 85/100

GAinWP Google Analytics Integration for WordPress has no known CVEs and is actively maintained. It's a solid choice for most WordPress installations.

No known CVEs Updated 5yr ago
Risk Assessment

The "ga-in" v5.4.6 plugin exhibits a mixed security posture. While it has a clean vulnerability history with no recorded CVEs, indicating a potentially well-maintained or less targeted plugin, the static analysis reveals some concerning practices. The presence of two AJAX handlers without authentication checks presents a direct attack vector, allowing unauthenticated users to potentially trigger actions within the plugin. Additionally, the use of the `unserialize` function is a significant risk, as it can lead to Remote Code Execution if untrusted data is passed to it. Despite these concerns, the plugin demonstrates good practices in other areas, such as a substantial number of nonce and capability checks, and a reasonable percentage of properly escaped outputs. The lack of critical or high severity taint flows is also a positive sign. Overall, while the plugin's known vulnerability history is a strength, the static analysis highlights areas that require immediate attention to improve its security.

Key Concerns

  • Unprotected AJAX handlers
  • Use of unserialize function
  • SQL queries not using prepared statements (50%)
  • Low percentage of properly escaped outputs (45%)
Vulnerabilities
None known

GAinWP Google Analytics Integration for WordPress Security Vulnerabilities

No known vulnerabilities — this is a good sign.
Code Analysis
Analyzed Mar 16, 2026

GAinWP Google Analytics Integration for WordPress Code Analysis

Dangerous Functions
1
Raw SQL Queries
3
1 prepared
Unescaped Output
139
116 escaped
Nonce Checks
17
Capability Checks
14
File Operations
11
External Requests
2
Bundled Libraries
0

Dangerous Functions Found

unserialize$data = unserialize($data);tools\src\Deconfin\Cache\File.php:75

SQL Query Safety

25% prepared4 total queries

Output Escaping

45% escaped255 total outputs
Data Flows
All sanitized

Data Flow Analysis

5 flows
general_settings (admin\settings.php:969)
Source (user input) Sink (dangerous op) Sanitizer Transform Unsanitized Sanitized
Attack Surface
2 unprotected

GAinWP Google Analytics Integration for WordPress Attack Surface

Entry Points7
Unprotected2

AJAX Handlers 6

authwp_ajax_gainwp_backend_item_reportsadmin\ajax-actions.php:23
authwp_ajax_gainwp_dismiss_noticesadmin\ajax-actions.php:27
authwp_ajax_gainwp_set_errorcommon\ajax-actions.php:22
authwp_ajax_gainwp_frontend_item_reportsfront\ajax-actions.php:23
authwp_ajax_ajax_frontwidget_reportfront\ajax-actions.php:27
noprivwp_ajax_ajax_frontwidget_reportfront\ajax-actions.php:28

Shortcodes 1

[gainwp_useroptout] front\tracking.php:74
WordPress Hooks 32
filtermanage_posts_columnsadmin\item-reports.php:23
actionmanage_posts_custom_columnadmin\item-reports.php:26
filtermanage_pages_columnsadmin\item-reports.php:29
actionmanage_pages_custom_columnadmin\item-reports.php:32
actionadmin_enqueue_scriptsadmin\setup.php:22
actionadmin_menuadmin\setup.php:24
actionnetwork_admin_menuadmin\setup.php:26
actionadmin_noticesadmin\setup.php:30
actionwp_dashboard_setupadmin\widgets.php:21
filterauto_update_pluginconfig.php:24
filterplugins_update_check_localesconfig.php:27
actionadmin_bar_menufront\item-reports.php:21
actionwp_enqueue_scriptsfront\setup.php:22
actionwp_headfront\tracking-analytics.php:137
actionwp_footerfront\tracking-analytics.php:258
actionwp_headfront\tracking-analytics.php:260
actionwp_footerfront\tracking-analytics.php:428
actionwp_headfront\tracking-analytics.php:430
filteramp_post_template_datafront\tracking-analytics.php:565
actionamp_post_template_footerfront\tracking-analytics.php:566
filterthe_contentfront\tracking-analytics.php:567
actionamp_post_template_headfront\tracking-analytics.php:569
actionwp_footerfront\tracking-tagmanager.php:30
actionwp_headfront\tracking-tagmanager.php:32
filteramp_post_template_datafront\tracking-tagmanager.php:36
actionamp_post_template_footerfront\tracking-tagmanager.php:37
actionwp_enqueue_scriptsfront\widgets.php:22
actioninitgainwp.php:134
actioninitgainwp.php:139
actionwidgets_initgainwp.php:163
actiongainwp_endpoint_supporttools\gapi.php:96
filtergainwp_endpoint_stream_optionstools\gapi.php:145
Maintenance & Trust

GAinWP Google Analytics Integration for WordPress Maintenance & Trust

Maintenance Signals

WordPress version tested5.5.18
Last updatedSep 10, 2020
PHP min version5.2.4
Downloads119K

Community Trust

Rating96/100
Number of ratings126
Active installs9K
Alternatives

GAinWP Google Analytics Integration for WordPress Alternatives

ExactMetrics – Google Analytics Dashboard for WordPress (Website Stats Plugin)

ExactMetrics – Google Analytics Dashboard for WordPress (Website Stats Plugin)

google-analytics-dashboard-for-wp

A
90

Connects Google Analytics with your WordPress site. Displays stats to help you understand your users and site content on a whole new level!

300K 5 CVEs
Lara's Google Analytics (GA4)

Lara's Google Analytics (GA4)

lara-google-analytics

A
100

Full width Google Analytics dashboard widget for Wordpress admin interface, which also inserts latest Google Analytics (GA4) tracking code to your pag …

9K 1 CVE
Local Google Analytics for WordPress – caches external requests

Local Google Analytics for WordPress – caches external requests

simple-google-analytics

A
100

Plugs in Google Analytics code to your website pages and caches it, so the website loads faster.

4K No CVEs
Metrics Query

Metrics Query

metrics-query

A
85

Connects Google Analytics with your WordPress site. Displays stats to help you understand your users and site content on a whole new level!

100 No CVEs
MonsterInsights – Google Analytics Dashboard for WordPress (Website Stats Made Easy)

MonsterInsights – Google Analytics Dashboard for WordPress (Website Stats Made Easy)

google-analytics-for-wordpress

A
96

The best free Google Analytics plugin for WordPress. See how visitors find and use your website so you can grow your business with powerful analytics.

2.0M 10 CVEs
Developer Profile

GAinWP Google Analytics Integration for WordPress Developer Profile

tomdude

2 plugins · 9K total installs

84
trust score
Avg Security Score
85/100
Avg Patch Time
30 days
View full developer profile
Detection Fingerprints

How We Detect GAinWP Google Analytics Integration for WordPress

Patterns used to identify this plugin on WordPress sites during automated security audits and web crawling.

Asset Fingerprints

Asset Paths
/wp-content/plugins/ga-in/css/admin-main.css/wp-content/plugins/ga-in/css/admin-widgets.css/wp-content/plugins/ga-in/css/admin-reports.css/wp-content/plugins/ga-in/css/admin-setup.css/wp-content/plugins/ga-in/css/admin-notice.css/wp-content/plugins/ga-in/js/admin-main.js/wp-content/plugins/ga-in/js/admin-setup.js/wp-content/plugins/ga-in/js/admin-widgets.js+5 more
Version Parameters
ga-in/css/admin-main.css?ver=ga-in/css/admin-widgets.css?ver=ga-in/css/admin-reports.css?ver=ga-in/css/admin-setup.css?ver=ga-in/css/admin-notice.css?ver=ga-in/js/admin-main.js?ver=ga-in/js/admin-setup.js?ver=ga-in/js/admin-widgets.js?ver=ga-in/js/admin-reports.js?ver=ga-in/js/chart.min.js?ver=ga-in/js/moment.min.js?ver=ga-in/js/sparkline.min.js?ver=ga-in/js/chartkick.min.js?ver=

HTML / DOM Fingerprints

CSS Classes
gainwp_noticegainwp_notice_errorgainwp_notice_successgainwp_notice_warninggainwp_notice_info
HTML Comments
Copyright 2013 Alin MarcuLicense: GPLv2 or laterLicense URI: http://www.gnu.org/licenses/gpl-2.0.html
Data Attributes
data-gainwp-id
JS Globals
GAINWP
FAQ

Frequently Asked Questions about GAinWP Google Analytics Integration for WordPress