History Tracker Security & Risk Analysis
wordpress.org/plugins/history-trackerTracks the history the users visit and displays it to them, like the browser history but only for your website
Is History Tracker Safe to Use in 2026?
Generally Safe
Score 85/100History Tracker has no known CVEs and is actively maintained. It's a solid choice for most WordPress installations.
The 'history-tracker' v1.0 plugin exhibits a mixed security posture. On the positive side, there are no known vulnerabilities (CVEs) recorded, and the code analysis shows no dangerous functions, no file operations, and no external HTTP requests. All SQL queries utilize prepared statements, which is a strong indicator of good database security practices. However, there are significant concerns regarding output escaping and a lack of robust authorization checks. With only 5% of outputs properly escaped, there is a substantial risk of Cross-Site Scripting (XSS) vulnerabilities, allowing attackers to inject malicious scripts through user-controlled input that is later displayed on the site. The absence of nonce checks and capability checks on the single identified entry point (a shortcode) means that any user, regardless of their role or permissions, can potentially trigger its functionality, opening the door for unauthorized actions or information disclosure.
Key Concerns
- Low percentage of properly escaped output
- No nonce checks on entry points
- No capability checks on entry points
History Tracker Security Vulnerabilities
History Tracker Code Analysis
Output Escaping
History Tracker Attack Surface
Shortcodes 1
WordPress Hooks 2
Maintenance & Trust
History Tracker Maintenance & Trust
Maintenance Signals
Community Trust
History Tracker Alternatives
A Year Before
a-year-before
"A Year Before" shows a list of articles, which were written a certain time ago. So you can show in a history, what happend in your blog in …
Widget Revisions
widget-revisions
This plugin allows to create revisions for Widget like post and page revisions. It also enables you to rollback your widget to any of those previous s …
Historian
retroposts
Historian Block aka "this week in history" for your blog.
Todayish in History
todayish-in-history
Shows a list of links to posts from previous years on or near this date, 1 per year. Provides a function to use in a theme, as well as a widget
User Recent Search History
user-recent-search-history
This plugin is to show user's recent search history.
History Tracker Developer Profile
15 plugins · 6K total installs
How We Detect History Tracker
Patterns used to identify this plugin on WordPress sites during automated security audits and web crawling.
Asset Fingerprints
/wp-content/plugins/history-tracker/history-tracker.css/wp-content/plugins/history-tracker/history-tracker.js/wp-content/plugins/history-tracker/history-tracker.jshistory-tracker/history-tracker.css?ver=history-tracker/history-tracker.js?ver=HTML / DOM Fingerprints
history-trackerhistory-tracker-description<!-- Widget Title --><!-- Description: --><!-- History Size --><!-- Order Selection Box: Text Input -->data-history-tracker-titledata-history-tracker-descriptiondata-history-tracker-sizedata-history-tracker-orderHistoryTrackerWidget<ol class='history-tracker'>