Interactive Map of New York Security & Risk Analysis
wordpress.org/plugins/interactive-map-of-new-yorkInteractive map of New York WordPress plugin with counties.
Is Interactive Map of New York Safe to Use in 2026?
Generally Safe
Score 100/100Interactive Map of New York has no known CVEs and is actively maintained. It's a solid choice for most WordPress installations.
The interactive-map-of-new-york plugin version 2.7 exhibits a generally strong security posture, with excellent adherence to secure coding practices. The plugin demonstrates a commitment to preventing common web vulnerabilities by utilizing prepared statements for all SQL queries and ensuring that almost all output is properly escaped. The absence of dangerous functions, file operations, and external HTTP requests further strengthens its security. The vulnerability history is also a significant positive, with no recorded CVEs, indicating a well-maintained and secure codebase over time.
Despite the overall positive assessment, there are a few areas that warrant attention. The presence of one flow with an unsanitized path in the taint analysis, even if not rated as critical or high severity, represents a potential avenue for attack if exploited. Additionally, the plugin lacks nonce checks, which is a crucial security measure for preventing Cross-Site Request Forgery (CSRF) attacks, particularly on entry points like shortcodes. While the capability checks are present, the absence of nonce checks on the identified shortcode entry point leaves it exposed.
In conclusion, interactive-map-of-new-york v2.7 is a securely developed plugin with a clean history and robust defense against many common threats. However, the identified unsanitized path and the missing nonce checks on the shortcode represent specific, albeit potentially low-severity, risks that should be addressed to achieve a truly robust security profile.
Key Concerns
- Flow with unsanitized path identified
- Missing nonce checks on shortcode
Interactive Map of New York Security Vulnerabilities
Interactive Map of New York Code Analysis
Bundled Libraries
Output Escaping
Data Flow Analysis
Interactive Map of New York Attack Surface
Shortcodes 1
WordPress Hooks 4
Maintenance & Trust
Interactive Map of New York Maintenance & Trust
Maintenance Signals
Community Trust
Interactive Map of New York Alternatives
No alternatives data available yet.
Interactive Map of New York Developer Profile
7 plugins · 2K total installs
How We Detect Interactive Map of New York
Patterns used to identify this plugin on WordPress sites during automated security audits and web crawling.
Asset Fingerprints
/wp-content/plugins/interactive-map-of-new-york/public/css/map-style.css/wp-content/plugins/interactive-map-of-new-york/public/js/map-interact.js/wp-content/plugins/interactive-map-of-new-york/public/css/dashboard-style.css/wp-content/plugins/interactive-map-of-new-york/public/css/tinyeditor.css/wp-content/plugins/interactive-map-of-new-york/public/js/editor/tinymce.min.js/wp-content/plugins/interactive-map-of-new-york/public/js/editor/scripts.jspublic/js/map-interact.jspublic/js/editor/tinymce.min.jspublic/js/editor/scripts.jsinteractive-map-of-new-york/public/css/map-style.css?ver=1.0interactive-map-of-new-york/public/js/map-interact.js?t=interactive-map-of-new-york/public/css/dashboard-style.css?ver=1.0interactive-map-of-new-york/public/css/tinyeditor.css?ver=1.0interactive-map-of-new-york/public/js/editor/tinymce.min.js?ver=1.0interactive-map-of-new-york/public/js/editor/scripts.js?ver=trueHTML / DOM Fingerprints
nyus-map-org-containerdata-countydata-upclrdata-ovrclrdata-dwnclrdata-urlnyus_map_org_options<div id="nyus-map-org-container"><svg class="nyus-map-org-container" version="1.1" id="Layer_1" xmlns="http://www.w3.org/2000/svg" xmlns:xlink="http://www.w3.org/1999/xlink" x="0px" y="0px" viewBox="0 0 800 600" enable-background="new 0 0 800 600" xml:space="preserve"><style type="text/css">.nyus-map-org-container .county { cursor: pointer; }