WP-Safety

Laoutaris Maze Generator Security & Risk Analysis

wordpress.org/plugins/laoutaris-maze-generator

Turn your WordPress pages into an interactive "Choose Your Path" maze game with a speedrun timer, global leaderboards, and downloadable rewards.

0 active installs v1.1.5 PHP 7.2+ WP 6.2+ Updated Dec 10, 2025
gamegamificationleaderboardpuzzlequiz
100
A · Safe
CVEs total0
Unpatched0
Last CVENever
Plugin page Download
Safety Verdict

Is Laoutaris Maze Generator Safe to Use in 2026?

Generally Safe

Score 100/100

Laoutaris Maze Generator has no known CVEs and is actively maintained. It's a solid choice for most WordPress installations.

No known CVEs Updated 5mo ago
Risk Assessment

The "laoutaris-maze-generator" plugin, version 1.1.5, exhibits a generally strong security posture with several good practices in place. It demonstrates a commitment to secure coding by utilizing prepared statements for all SQL queries and properly escaping a high percentage of its output. The presence of nonce and capability checks on its entry points further enhances its defenses against common attack vectors. The absence of any known past vulnerabilities or unpatched CVEs is a positive indicator of its maintenance and security awareness.

However, the static analysis reveals three taint flows with unsanitized paths, all categorized as high severity. This is a significant concern as unsanitized input that reaches sensitive operations can lead to various vulnerabilities, including command injection, path traversal, or cross-site scripting if not handled downstream. While the plugin has not historically shown vulnerabilities, these specific taint flows represent potential weaknesses that could be exploited.

In conclusion, while the plugin has a solid foundation with secure SQL and output handling, the identified high-severity unsanitized taint flows are a notable weakness. Addressing these specific flows is crucial to further harden the plugin's security. The lack of historical vulnerabilities is encouraging, but proactive remediation of the identified taint issues is paramount.

Key Concerns

  • High severity unsanitized taint flows found
Vulnerabilities
None known

Laoutaris Maze Generator Security Vulnerabilities

No known vulnerabilities — this is a good sign.
Version History

Laoutaris Maze Generator Release Timeline

v1.1.5Current
Code Analysis
Analyzed Mar 17, 2026

Laoutaris Maze Generator Code Analysis

Dangerous Functions
0
Raw SQL Queries
0
14 prepared
Unescaped Output
2
84 escaped
Nonce Checks
5
Capability Checks
5
File Operations
0
External Requests
0
Bundled Libraries
0

SQL Query Safety

100% prepared14 total queries

Output Escaping

98% escaped86 total outputs
Data Flows · Security
3 unsanitized

Data Flow Analysis

4 flows3 with unsanitized paths
lmaze_render_edit_page (laoutaris-maze-generator.php:319)
Source (user input) Sink (dangerous op) Sanitizer Transform Unsanitized Sanitized
Attack Surface

Laoutaris Maze Generator Attack Surface

Entry Points6
Unprotected0

AJAX Handlers 4

authwp_ajax_lmaze_lb_datalaoutaris-maze-generator.php:579
noprivwp_ajax_lmaze_lb_datalaoutaris-maze-generator.php:580
authwp_ajax_lmaze_submitlaoutaris-maze-generator.php:609
noprivwp_ajax_lmaze_submitlaoutaris-maze-generator.php:610

Shortcodes 2

[lmaze_number_maze] laoutaris-maze-generator.php:529
[lmaze_maze_leaderboard] laoutaris-maze-generator.php:537
WordPress Hooks 6
actionplugins_loadedlaoutaris-maze-generator.php:24
actionadmin_enqueue_scriptslaoutaris-maze-generator.php:25
actionadmin_menulaoutaris-maze-generator.php:93
actionadmin_initlaoutaris-maze-generator.php:122
actionadmin_post_lmaze_save_mazelaoutaris-maze-generator.php:144
actionadmin_action_lmaze_clear_datalaoutaris-maze-generator.php:225
Maintenance & Trust

Laoutaris Maze Generator Maintenance & Trust

Maintenance Signals

WordPress version tested6.9.4
Last updatedDec 10, 2025
PHP min version7.2
Downloads158

Community Trust

Rating0/100
Number of ratings0
Active installs0
Alternatives

Laoutaris Maze Generator Alternatives

PuzzleMe – Interactive Puzzles for WordPress – Easily publish crosswords, quizzes, word searches and more

PuzzleMe – Interactive Puzzles for WordPress – Easily publish crosswords, quizzes, word searches and more

puzzleme

A
99

PuzzleMe makes it easy to add interactive games to your WordPress website - no coding required.

1K 1 CVE
WHA Puzzle

WHA Puzzle

wha-puzzle

A
85

Puzzle - puzzle game, which is a mosaic that you want to make from the many fragments of the pattern of various shapes.

300 No CVEs
Leaderboarded

Leaderboarded

keep-the-score

A
100

Embed beautiful, animated real-time leaderboards into any WordPress post or page. No coding required.

200 No CVEs
WP Shredderchess

WP Shredderchess

wp-shredderchess

A
100

Widget that displays the chess puzzle from shredderchess.com.

200 No CVEs
Solitaire Card Game – Embed Klondike Solitaire for Free – Ad-free Solitaire Puzzle game

Solitaire Card Game – Embed Klondike Solitaire for Free – Ad-free Solitaire Puzzle game

embed-solitaire-iframe

A
85

This plugin lets you embed an ad-free version of Solitaire for free using a shortcode. Easily embed Klondike Solitaire on your WordPress website, usin …

100 No CVEs
Developer Profile

Laoutaris Maze Generator Developer Profile

Pashalis Laoutaris

1 plugin · 0 total installs

94
trust score
Avg Security Score
100/100
Avg Patch Time
30 days
View full developer profile
Detection Fingerprints

How We Detect Laoutaris Maze Generator

Patterns used to identify this plugin on WordPress sites during automated security audits and web crawling.

Asset Fingerprints

Asset Paths
/wp-content/plugins/laoutaris-maze-generator/css/admin-style.css/wp-content/plugins/laoutaris-maze-generator/js/admin.js
Version Parameters
laoutaris-maze-generator/css/admin-style.css?ver=laoutaris-maze-generator/js/admin.js?ver=

HTML / DOM Fingerprints

JS Globals
lmaze_plugin_url
FAQ

Frequently Asked Questions about Laoutaris Maze Generator