Does IP2GA have any unpatched vulnerabilities?

No. All known vulnerabilities in IP2GA have been patched as of the latest data update. Always keep the plugin updated to the latest version.

Is IP2GA compatible with WordPress 6.6.5?

According to WordPress.org data, IP2GA 1.6.3 has been tested up to WordPress 6.6.5. Check the plugin's changelog for the latest compatibility information.

Is IP2GA compatible with PHP 7.4+?

IP2GA requires PHP 7.4 or higher. Most modern WordPress hosts run PHP 8.1 or 8.2. If you are on an older PHP version, consider upgrading before installing this plugin.

How often is IP2GA updated?

IP2GA was last updated on Oct 18, 2024. Frequent updates are generally a positive security signal.

What is IP2GA's security score?

IP2GA has a WP-Safety security score of 92/100. This score is computed from CVE history, patch response time, developer trust signals, and plugin maintenance activity.

IP2GA Security & Risk Analysis

wordpress.org/plugins/ip2ga

Track all user activities on the site, including page views, button clicks, and form submissions, and send them to Google Analytics 4.

0 active installs v1.6.3 PHP 7.4+ WP 4.8.1+ Updated Oct 18, 2024

b2b-google-analyticsb2b-trackingcompany-dataga4-leadsleads-analytics

A · Safe

CVEs total0

Unpatched0

Last CVENever

Download

Safety Verdict

Is IP2GA Safe to Use in 2026?

Generally Safe

Score 92/100

IP2GA has no known CVEs and is actively maintained. It's a solid choice for most WordPress installations.

No known CVEs Updated 1yr ago

Risk Assessment

The plugin 'ip2ga' v1.6.3 exhibits a generally strong security posture based on the provided static analysis. It has a minimal attack surface, with all identified entry points being AJAX handlers that are not protected by authentication checks. This is a significant concern, as any user, even unauthenticated ones, could potentially interact with these handlers. The code also shows excellent practices in SQL query handling, with 100% using prepared statements, and a very high percentage of outputs being properly escaped, mitigating common injection and XSS risks. The absence of file operations and dangerous functions is also a positive indicator. However, the lack of capability checks on the AJAX handlers means that privilege escalation is not a direct concern from this analysis, but the openness of the handlers is a foundational weakness.

Key Concerns

AJAX handlers without auth checks
No capability checks on entry points

Vulnerabilities

None known

IP2GA Security Vulnerabilities

No known vulnerabilities — this is a good sign.

Code Analysis

Analyzed Mar 17, 2026

IP2GA Code Analysis

Dangerous Functions

Raw SQL Queries

0 prepared

Unescaped Output

65 escaped

Nonce Checks

Capability Checks

File Operations

External Requests

Bundled Libraries

Output Escaping

97% escaped67 total outputs

Attack Surface

IP2GA Attack Surface

Entry Points2

Unprotected0

AJAX Handlers 2

authwp_ajax_ga_ip2c_eventip2ga-plugin.php:397

noprivwp_ajax_ga_ip2c_eventip2ga-plugin.php:398

WordPress Hooks 7

actionwp_enqueue_scriptsip2ga-plugin.php:269

actionwp_footerip2ga-plugin.php:393

actionwp_footerip2ga-plugin.php:395

actionwp_headip2ga-plugin.php:399

actionadmin_enqueue_scriptsip2ga-plugin.php:410

actionadmin_menuip2ga-plugin.php:422

actionadmin_initip2ga-plugin.php:435

Maintenance & Trust

IP2GA Maintenance & Trust

Maintenance Signals

WordPress version tested6.6.5

Last updatedOct 18, 2024

PHP min version7.4

Downloads1K

Community Trust

Rating0/100

Number of ratings0

Active installs0

Alternatives

IP2GA Alternatives

Testimonials by BestWebSoft

bws-testimonials

100

Add testimonials and feedbacks from your customers to WordPress website posts, pages, and widgets.

200 1 CVE

Company Data Manager

company-data-manager

A plugin for managing and displaying essential company information, including contact details and social media links.

10 No CVEs

Developer Profile

IP2GA Developer Profile

wiredmindshelp

3 plugins · 110 total installs

trust score

Avg Security Score

94/100

Avg Patch Time

102 days

View full developer profile

Detection Fingerprints

How We Detect IP2GA

Patterns used to identify this plugin on WordPress sites during automated security audits and web crawling.

Asset Fingerprints

Asset Paths

/wp-content/plugins/ip2ga/js/ip2ga-event-tracker.js/wp-content/plugins/ip2ga/css/ip2ga-styles.css

Script Paths

/wp-content/plugins/ip2ga/js/ip2ga-event-tracker.js

Version Parameters

ip2ga/js/ip2ga-event-tracker.js?ver=ip2ga/css/ip2ga-styles.css?ver=

HTML / DOM Fingerprints

JS Globals

ip2ga_event_trackerip2ga_tracking_idip2ga_api_secretip2ga_company_tracking_enabledip2ga_company_nameip2ga_company_city+9 more

FAQ