WP-Safety

Loadify-Preloader Security & Risk Analysis

wordpress.org/plugins/loadify-preloader

✨ Add a customizable preloader to your WordPress site, enhancing user experience with a loading screen while content is loading.

0 active installs v1.0.1 PHP 7.2+ WP 5.0+ Updated Aug 5, 2025
loading-animationloading-screenpage-loaderpreloaderwordpress-preloader
100
A · Safe
CVEs total0
Unpatched0
Last CVENever
Download
Safety Verdict

Is Loadify-Preloader Safe to Use in 2026?

Generally Safe

Score 100/100

Loadify-Preloader has no known CVEs and is actively maintained. It's a solid choice for most WordPress installations.

No known CVEs Updated 8mo ago
Risk Assessment

The "loadify-preloader" v1.0.1 plugin presents a mixed security posture. On the positive side, it demonstrates good practices regarding SQL queries, exclusively using prepared statements, and shows a high rate of proper output escaping (94%). It also includes a nonce check, which is a fundamental security measure for WordPress actions. The absence of known vulnerabilities in its history is also a positive indicator, suggesting a generally stable codebase in terms of past security issues.

However, significant concerns arise from the attack surface. The plugin exposes two AJAX handlers, and critically, both lack authentication checks. This means any user, including unauthenticated ones, could potentially trigger these AJAX actions, opening up avenues for exploitation if the handler's functionality is vulnerable. The lack of capability checks further exacerbates this risk, as no user roles are verified before execution.

While the taint analysis shows no identified issues, and there are no known CVEs, the unprotected AJAX endpoints represent a tangible and immediate risk. The plugin's strengths lie in its robust handling of database queries and output sanitization, but these are overshadowed by the critical vulnerability of unprotected entry points into the application. A balanced conclusion is that while the plugin avoids common pitfalls like raw SQL and poor output escaping, its unprotected AJAX handlers create a significant security weakness that needs immediate attention.

Key Concerns

  • AJAX handlers without auth checks
  • AJAX handlers without capability checks
Vulnerabilities
None known

Loadify-Preloader Security Vulnerabilities

No known vulnerabilities — this is a good sign.
Code Analysis
Analyzed Mar 17, 2026

Loadify-Preloader Code Analysis

Dangerous Functions
0
Raw SQL Queries
0
0 prepared
Unescaped Output
3
47 escaped
Nonce Checks
1
Capability Checks
0
File Operations
0
External Requests
0
Bundled Libraries
0

Output Escaping

94% escaped50 total outputs
Attack Surface
2 unprotected

Loadify-Preloader Attack Surface

Entry Points2
Unprotected2

AJAX Handlers 2

authwp_ajax_my_book_actioninc\admin\admin.php:14
noprivwp_ajax_my_book_actioninc\admin\admin.php:15
WordPress Hooks 6
actionadmin_menuinc\admin\admin.php:12
actionadmin_enqueue_scriptsinc\admin\admin.php:13
actionwp_body_openinc\public\frontend.php:13
actionwp_enqueue_scriptsinc\public\frontend.php:14
actionwp_enqueue_scriptsinc\public\frontend.php:15
actionplugins_loadedloadify-preloader.php:32
Maintenance & Trust

Loadify-Preloader Maintenance & Trust

Maintenance Signals

WordPress version tested6.6.5
Last updatedAug 5, 2025
PHP min version7.2
Downloads1K

Community Trust

Rating0/100
Number of ratings0
Active installs0
Alternatives

Loadify-Preloader Alternatives

Preloader Awesome – Page Loading Animation with Spinner & Gif

Preloader Awesome – Page Loading Animation with Spinner & Gif

preloader-awesome

A
92

Preloader Awesome help You to create page loading animation WordPress with spinner or You can upload Your own GIF.

1K No CVEs
W Auto Page Pre Loader

W Auto Page Pre Loader

w-auto-page-preloader

A
100

W Auto Page Pre Loader adds a smooth loading screen before your website content appears. It improves perceived speed, enhances user experience, and le …

10 No CVEs
WP Preloader

WP Preloader

wp-preloader

A
85

WP Preloader is a simple and customizable wordpress preloader plugin. Very easy to use.

10 No CVEs
SmartWait Animated Preloader

SmartWait Animated Preloader

smartwait-animated-preloader

A
100

Fastest WordPress Preloader with ready templates. Add custom logos, text, and progress bars to reduce bounce rates. Lightweight, fast, and SEO-friendl …

0 No CVEs
Safelayout Cute Preloader – CSS3 WordPress Preloader

Safelayout Cute Preloader – CSS3 WordPress Preloader

safelayout-cute-preloader

A
100

Easily add a pure CSS animated preloader to your WordPress website.

10K No CVEs
Developer Profile

Loadify-Preloader Developer Profile

Ahsan Riad

2 plugins · 0 total installs

94
trust score
Avg Security Score
100/100
Avg Patch Time
30 days
View full developer profile
Detection Fingerprints

How We Detect Loadify-Preloader

Patterns used to identify this plugin on WordPress sites during automated security audits and web crawling.

Asset Fingerprints

Asset Paths
/wp-content/plugins/loadify-preloader/assets/css/ws-preloader.css/wp-content/plugins/loadify-preloader/assets/css/frontend.css/wp-content/plugins/loadify-preloader/assets/js/admin.js/wp-content/plugins/loadify-preloader/assets/js/ws-preloader.js
Version Parameters
loadifypreloader-admin-cssloadifypreloader-frontend-cssloadifypreloader-admin-jsloadifypreloader_google_fontloadifypreloader-preloader-cssloadifypreloader-preloader-js

HTML / DOM Fingerprints

CSS Classes
loadifypreloader-preloaderloadifypreloader-loader
HTML Comments
<!-- <div class="preloader"> <div class="dot"></div> </div> <div class="dotscalepreloader"> <div class="dotscale"></div> <div class="dotscale"></div> <div class="dotscale"></div> <div class="dotscale"></div> </div> -->
Data Attributes
data-preloader-statusdata-preloader-bgdata-preloader-font-sizedata-preloader-font-colordata-preloader-font-textdata-preloader-image-name
JS Globals
loadifypreloader_VERSION
FAQ

Frequently Asked Questions about Loadify-Preloader