WP-Safety

Multi Device Switcher Security & Risk Analysis

wordpress.org/plugins/multi-device-switcher

Multi Device Switcher plugin allows you to set a separate theme for device (Smart Phone, Tablet PC, Mobile Phone, Game and custom).

20K active installs v1.8.6 PHP 5.6+ WP 4.9+ Updated Jan 17, 2025
androidipadiphoneswitchertheme
92
A · Safe
CVEs total0
Unpatched0
Last CVENever
Plugin page Download
Safety Verdict

Is Multi Device Switcher Safe to Use in 2026?

Generally Safe

Score 92/100

Multi Device Switcher has no known CVEs and is actively maintained. It's a solid choice for most WordPress installations.

No known CVEs Updated 1yr ago
Risk Assessment

The "multi-device-switcher" plugin version 1.8.6 exhibits a generally strong security posture based on the provided static analysis. The absence of dangerous functions, SQL queries without prepared statements, file operations, and external HTTP requests are positive indicators. The high percentage of properly escaped output also suggests good practices in preventing cross-site scripting (XSS) vulnerabilities. Furthermore, the plugin has no recorded vulnerability history, which is a significant strength.

However, there are a few areas that warrant attention. The lack of nonce checks and capability checks on its single entry point, a shortcode, represents a potential risk. While the total attack surface is small, this unprotected entry point could be exploited by an authenticated user to trigger unintended actions if the shortcode's functionality is sensitive. The taint analysis also showed two flows analyzed, though none with unsanitized paths, it's worth noting that even a limited number of flows can sometimes hide subtle issues.

In conclusion, while the plugin appears robust and well-maintained with no known vulnerabilities, the absence of security checks on its shortcode is a notable weakness. Developers should prioritize implementing proper nonce and capability checks to further harden this entry point.

Key Concerns

  • Shortcode without nonce check
  • Shortcode without capability check
Vulnerabilities
None known

Multi Device Switcher Security Vulnerabilities

No known vulnerabilities — this is a good sign.
Code Analysis
Analyzed Mar 16, 2026

Multi Device Switcher Code Analysis

Dangerous Functions
0
Raw SQL Queries
0
0 prepared
Unescaped Output
7
47 escaped
Nonce Checks
0
Capability Checks
0
File Operations
0
External Requests
0
Bundled Libraries
0

Output Escaping

87% escaped54 total outputs
Data Flows
All sanitized

Data Flow Analysis

2 flows
add_pc_switcher (multi-device-switcher.php:526)
Source (user input) Sink (dangerous op) Sanitizer Transform Unsanitized Sanitized
Attack Surface

Multi Device Switcher Attack Surface

Entry Points1
Unprotected0

Shortcodes 1

[multi] multi-device-switcher.php:177
WordPress Hooks 22
actioninitmulti-device-switcher.php:147
actionplugins_loadedmulti-device-switcher.php:148
actionplugins_loadedmulti-device-switcher.php:149
filterwp_headersmulti-device-switcher.php:152
actionplugins_loadedmulti-device-switcher.php:153
actionplugins_loadedmulti-device-switcher.php:154
actionadmin_initmulti-device-switcher.php:157
actionadmin_menumulti-device-switcher.php:158
actioncustomize_registermulti-device-switcher.php:159
actionplugins_loadedmulti-device-switcher.php:160
filterplugin_row_metamulti-device-switcher.php:175
actionwp_headersmulti-device-switcher.php:191
actionwp_headersmulti-device-switcher.php:195
actioninitmulti-device-switcher.php:199
filterstylesheetmulti-device-switcher.php:249
filtertemplatemulti-device-switcher.php:250
actionwp_footermulti-device-switcher.php:251
actionwp_headersmulti-device-switcher.php:252
actionwp_headersmulti-device-switcher.php:255
actionadmin_enqueue_scriptsmulti-device-switcher.php:798
actionadmin_enqueue_scriptsmulti-device-switcher.php:799
actionwidgets_initpc-switcher-widget.php:23
Maintenance & Trust

Multi Device Switcher Maintenance & Trust

Maintenance Signals

WordPress version tested6.7.5
Last updatedJan 17, 2025
PHP min version5.6
Downloads291K

Community Trust

Rating86/100
Number of ratings11
Active installs20K
Alternatives

Multi Device Switcher Alternatives

WPapptouch

WPapptouch

wpapptouch

A
85

WPapptouch is a WordPress plugin & theme to transform your WordPress website to a Native like application for mobile.

50 No CVEs
Conditional Lightbox

Conditional Lightbox

conditional-lightbox

A
100

Use a lightbox only if the screen is big enough.

10 No CVEs
WPMobile Apps

WPMobile Apps

wpmobile-apps

A
100

Create a mobile WordPress website experience on your website.

10 No CVEs
WPtouch – Make your WordPress Website Mobile-Friendly

WPtouch – Make your WordPress Website Mobile-Friendly

wptouch

A
86

With just a few clicks, make your WordPress website mobile-friendly (iPhone, Android, and more). Recommended by Google, it will instantly enable a mob …

50K 10 CVEs
Any Mobile Theme Switcher

Any Mobile Theme Switcher

any-mobile-theme-switcher

A
92

This Plugin detects mobile browser and display the theme as the setting done from admin. Usefull for switch to Mobile Theme.

20K No CVEs
Developer Profile

Multi Device Switcher Developer Profile

thingsym

11 plugins · 39K total installs

89
trust score
Avg Security Score
93/100
Avg Patch Time
30 days
View full developer profile
Detection Fingerprints

How We Detect Multi Device Switcher

Patterns used to identify this plugin on WordPress sites during automated security audits and web crawling.

Asset Fingerprints

Asset Paths
/wp-content/plugins/multi-device-switcher/css/switcher.css/wp-content/plugins/multi-device-switcher/js/switcher.js
Script Paths
/wp-content/plugins/multi-device-switcher/js/switcher.js
Version Parameters
multi-device-switcher/css/switcher.css?ver=multi-device-switcher/js/switcher.js?ver=

HTML / DOM Fingerprints

CSS Classes
multi-device-switcher-bar
Data Attributes
data-device-switcher
JS Globals
multi_device_switcher_params
Shortcode Output
[multi]
FAQ

Frequently Asked Questions about Multi Device Switcher