Does 一款精美的在线旅行地图标记,记录日志插件 have any unpatched vulnerabilities?

No. All known vulnerabilities in 一款精美的在线旅行地图标记,记录日志插件 have been patched as of the latest data update. Always keep the plugin updated to the latest version.

Is 一款精美的在线旅行地图标记,记录日志插件 compatible with WordPress 6.1.10?

According to WordPress.org data, 一款精美的在线旅行地图标记,记录日志插件 1.2.7 has been tested up to WordPress 6.1.10. Check the plugin's changelog for the latest compatibility information.

How often is 一款精美的在线旅行地图标记,记录日志插件 updated?

一款精美的在线旅行地图标记,记录日志插件 was last updated on Mar 20, 2023. Frequent updates are generally a positive security signal.

What is 一款精美的在线旅行地图标记,记录日志插件's security score?

一款精美的在线旅行地图标记,记录日志插件 has a WP-Safety security score of 85/100. This score is computed from CVE history, patch response time, developer trust signals, and plugin maintenance activity.

一款精美的在线旅行地图标记,记录日志插件 Security & Risk Analysis

wordpress.org/plugins/jiutu-mapmarker

一款精美的在线旅行地图标记,记录日志插件!

10 active installs v1.2.7 PHP + WP 6.0+ Updated Mar 20, 2023

mapmapmarker%e5%9c%b0%e5%9b%be%e5%9c%b0%e5%9b%be%e6%a0%87%e8%ae%b0%e6%97%85%e8%a1%8c%e5%9c%b0%e5%9b%be

A · Safe

CVEs total0

Unpatched0

Last CVENever

Plugin page Download

Safety Verdict

Is 一款精美的在线旅行地图标记,记录日志插件 Safe to Use in 2026?

Generally Safe

Score 85/100

一款精美的在线旅行地图标记,记录日志插件 has no known CVEs and is actively maintained. It's a solid choice for most WordPress installations.

No known CVEs Updated 3yr ago

Risk Assessment

The "jiutu-mapmarker" v1.2.7 plugin exhibits a generally good security posture, with several positive indicators such as the absence of dangerous functions, 100% use of prepared statements for SQL queries, and no recorded vulnerabilities. The plugin also demonstrates a commitment to security by implementing a reasonable number of nonce and capability checks.

However, there are notable concerns regarding the plugin's attack surface. The analysis reveals 7 AJAX handlers, 2 of which lack proper authentication checks. This presents a significant risk, as these unprotected AJAX endpoints could be exploited by unauthenticated users to perform unintended actions. While the taint analysis did not reveal any unsanitized paths, the sheer number of unprotected entry points is a primary area of concern. Additionally, the output escaping, while present in a majority of cases, is not universally applied, meaning there's a potential for cross-site scripting (XSS) vulnerabilities in the remaining 33% of outputs.

Given the clean vulnerability history, it's likely that the developers are responsive to security issues or that the plugin hasn't been targeted extensively. Nevertheless, the identified unprotected AJAX endpoints are a critical weakness that needs immediate attention. The plugin's strengths lie in its secure database interaction and lack of known exploitable flaws, but the unprotected entry points and partially unescaped output detract from an otherwise solid security foundation.

Key Concerns

Unprotected AJAX handlers
Unescaped output (33%)

Vulnerabilities

None known

一款精美的在线旅行地图标记,记录日志插件 Security Vulnerabilities

No known vulnerabilities — this is a good sign.

Version History

一款精美的在线旅行地图标记,记录日志插件 Release Timeline

No version history available.

Code Analysis

Analyzed Mar 17, 2026

一款精美的在线旅行地图标记,记录日志插件 Code Analysis

Dangerous Functions

Raw SQL Queries

2 prepared

Unescaped Output

202

412 escaped

Nonce Checks

Capability Checks

File Operations

External Requests

Bundled Libraries

SQL Query Safety

100% prepared2 total queries

Output Escaping

67% escaped614 total outputs

Data Flows

All sanitized

Data Flow Analysis

3 flows

csf_export (inc\functions\actions.php:62)

Source (user input) Sink (dangerous op) Sanitizer Transform Unsanitized Sanitized

Attack Surface

2 unprotected

一款精美的在线旅行地图标记,记录日志插件 Attack Surface

Entry Points8

Unprotected2

AJAX Handlers 7

authwp_ajax_csf-get-iconsinc\functions\actions.php:50

authwp_ajax_csf-exportinc\functions\actions.php:87

authwp_ajax_csf-importinc\functions\actions.php:123

authwp_ajax_csf-resetinc\functions\actions.php:150

authwp_ajax_csf-choseninc\functions\actions.php:189

noprivwp_ajax_jiutu_mapmarker_geojson_apimapmarker.php:541

authwp_ajax_jiutu_mapmarker_geojson_apimapmarker.php:542

Shortcodes 1

[jiutu_mapmarker_shortcode] mapmarker.php:485

WordPress Hooks 17

actionwp_enqueue_scriptsinc\classes\abstract.class.php:20

actionadmin_menuinc\classes\admin-options.class.php:111

actionadmin_bar_menuinc\classes\admin-options.class.php:112

actionnetwork_admin_menuinc\classes\admin-options.class.php:116

filteradmin_footer_textinc\classes\admin-options.class.php:481

actionafter_setup_themeinc\classes\setup.class.php:74

actioninitinc\classes\setup.class.php:75

actionswitch_themeinc\classes\setup.class.php:76

actionadmin_enqueue_scriptsinc\classes\setup.class.php:77

actionwp_enqueue_scriptsinc\classes\setup.class.php:78

actionwp_headinc\classes\setup.class.php:79

filteradmin_body_classinc\classes\setup.class.php:80

actionadmin_footerinc\fields\icon\icon.php:46

actioncustomize_controls_print_footer_scriptsinc\fields\icon\icon.php:47

actionadmin_print_footer_scriptsinc\fields\link\link.php:70

actionprint_default_editor_scriptsinc\fields\wp_editor\wp_editor.php:62

actioninitmapmarker.php:493

Maintenance & Trust

一款精美的在线旅行地图标记,记录日志插件 Maintenance & Trust

Maintenance Signals

WordPress version tested6.1.10

Last updatedMar 20, 2023

PHP min version

Downloads1K

Community Trust

Rating100/100

Number of ratings1

Active installs10

Alternatives

一款精美的在线旅行地图标记,记录日志插件 Alternatives

SEO All

seo-all

一款真正意义上的面向中文用户的多功能SEO插件。

10 No CVEs

Yoast SEO – Advanced SEO with real-time guidance and built-in AI

wordpress-seo

Improve your SEO with real-time feedback, schema, and clear guidance. Upgrade for AI tools, Google Docs integration, and 24/7 support, no hidden fees.

10.0M 18 CVEs

All in One SEO – Powerful SEO Plugin to Boost SEO Rankings & Increase Traffic

all-in-one-seo-pack

AIOSEO is the most powerful WordPress SEO plugin. Improve SEO rankings and traffic with comprehensive SEO tools and smart AI SEO optimizations!

3.0M 26 CVEs

XML Sitemap Generator for Google

google-sitemap-generator

Generate multiple types of sitemaps to improve SEO and get your website indexed quickly.

1.0M 3 CVEs

SiteSEO – SEO Simplified

siteseo

SiteSEO is an easy, fast and powerful SEO plugin for WordPress. Unlock your Website's potential and Maximize your online visibility with our SiteSEO!

500K 4 CVEs

Developer Profile

一款精美的在线旅行地图标记,记录日志插件 Developer Profile

不问归期_

2 plugins · 50 total installs

trust score

Avg Security Score

85/100

Avg Patch Time

30 days

View full developer profile

Detection Fingerprints

How We Detect 一款精美的在线旅行地图标记,记录日志插件

Patterns used to identify this plugin on WordPress sites during automated security audits and web crawling.

Asset Fingerprints

Asset Paths

/wp-content/plugins/jiutu-mapmarker/static/css/mapmarker.css/wp-content/plugins/jiutu-mapmarker/static/js/mapmarker.js/wp-content/plugins/jiutu-mapmarker/static/js/mapmarker-map.js/wp-content/plugins/jiutu-mapmarker/static/css/images/map/light.png

Script Paths

/wp-content/plugins/jiutu-mapmarker/static/js/mapmarker.js/wp-content/plugins/jiutu-mapmarker/static/js/mapmarker-map.js

Version Parameters

jiutu-mapmarker/static/css/mapmarker.css?ver=jiutu-mapmarker/static/js/mapmarker.js?ver=jiutu-mapmarker/static/js/mapmarker-map.js?ver=

HTML / DOM Fingerprints

CSS Classes

map_hero-img-wrap

Data Attributes

data-titledata-addressdata-descriptiondata-markercolourdata-map-timedata-images

JS Globals

jiutu_mapmarker_data

FAQ

一款精美的在线 旅行地图标记,记录日志插件 Security & Risk Analysis

Is 一款精美的在线 旅行地图标记,记录日志插件 Safe to Use in 2026?