Does Opti-Behavior – Analytics That Grows Your Business have any unpatched vulnerabilities?

No. All known vulnerabilities in Opti-Behavior – Analytics That Grows Your Business have been patched as of the latest data update. Always keep the plugin updated to the latest version.

Is Opti-Behavior – Analytics That Grows Your Business compatible with WordPress 6.9.4?

According to WordPress.org data, Opti-Behavior – Analytics That Grows Your Business 1.2.0 has been tested up to WordPress 6.9.4. Check the plugin's changelog for the latest compatibility information.

Is Opti-Behavior – Analytics That Grows Your Business compatible with PHP 7.4+?

Opti-Behavior – Analytics That Grows Your Business requires PHP 7.4 or higher. Most modern WordPress hosts run PHP 8.1 or 8.2. If you are on an older PHP version, consider upgrading before installing this plugin.

What is Opti-Behavior – Analytics That Grows Your Business's security score?

Opti-Behavior – Analytics That Grows Your Business has a WP-Safety security score of 100/100. This score is computed from CVE history, patch response time, developer trust signals, and plugin maintenance activity.

Opti-Behavior – Analytics That Grows Your Business Security & Risk Analysis

wordpress.org/plugins/opti-behavior

Ultra-fast self-hosted heatmaps, click tracking, funnel analytics & real-time visitor insights. Hybrid Storage engine. 100% local data.

10 active installs v1.2.0 PHP 7.4+ WP 5.8+ Updated Mar 11, 2026

cookieless-analyticsfunnelheatmaphotjar-alternativesession-recording

A · Safe

CVEs total0

Unpatched0

Last CVENever

Plugin page Download

Safety Verdict

Is Opti-Behavior – Analytics That Grows Your Business Safe to Use in 2026?

Generally Safe

Score 100/100

Opti-Behavior – Analytics That Grows Your Business has no known CVEs and is actively maintained. It's a solid choice for most WordPress installations.

No known CVEs Updated 24d ago

Risk Assessment

The opti-behavior plugin version 1.2.0 exhibits a mixed security posture. While it demonstrates strengths such as a high percentage of prepared SQL statements and properly escaped output, along with a comprehensive number of nonce and capability checks, there are significant areas of concern. The substantial attack surface, particularly the 23 unprotected AJAX handlers, presents a direct risk of unauthorized actions if these entry points are not adequately secured by other means. Furthermore, the taint analysis reveals 23 flows with unsanitized paths flagged as high severity, indicating potential vulnerabilities where user-supplied data could be misused within the plugin's logic, even though no critical severity flows were identified.

The plugin's vulnerability history is a positive indicator, showing no previously recorded CVEs. This suggests a potential for relatively stable code or perhaps a lack of extensive public scrutiny. However, this lack of historical vulnerabilities should not breed complacency, especially when juxtaposed with the static analysis findings. The presence of high-severity taint flows and a large number of unprotected AJAX handlers are significant weaknesses that could be exploited. In conclusion, while opti-behavior has implemented good security practices in many areas, the identified unprotected entry points and high-severity taint flows necessitate immediate attention and remediation to mitigate potential security risks.

Key Concerns

Unprotected AJAX handlers
High severity unsanitized taint flows

Vulnerabilities

None known

Opti-Behavior – Analytics That Grows Your Business Security Vulnerabilities

No known vulnerabilities — this is a good sign.

Code Analysis

Analyzed Mar 16, 2026

Opti-Behavior – Analytics That Grows Your Business Code Analysis

Dangerous Functions

Raw SQL Queries

178

704 prepared

Unescaped Output

209

1573 escaped

Nonce Checks

Capability Checks

File Operations

External Requests

Bundled Libraries

SQL Query Safety

80% prepared882 total queries

Output Escaping

88% escaped1782 total outputs

Data Flows

27 unsanitized

Data Flow Analysis

25 flows27 with unsanitized paths

render_page (admin\class-opti-behavior-heatmap-detail-page.php:161)

Source (user input) Sink (dangerous op) Sanitizer Transform Unsanitized Sanitized

Attack Surface

23 unprotected

Opti-Behavior – Analytics That Grows Your Business Attack Surface

Entry Points66

Unprotected23

AJAX Handlers 66

authwp_ajax_optibehavior_funnel_dataadmin\class-opti-behavior-funnel-page.php:63

authwp_ajax_optibehavior_get_funnelsadmin\class-opti-behavior-funnel-page.php:64

authwp_ajax_optibehavior_get_funneladmin\class-opti-behavior-funnel-page.php:65

authwp_ajax_optibehavior_save_funneladmin\class-opti-behavior-funnel-page.php:66

authwp_ajax_optibehavior_delete_funneladmin\class-opti-behavior-funnel-page.php:67

authwp_ajax_optibehavior_reset_funnel_dataadmin\class-opti-behavior-funnel-page.php:68

authwp_ajax_optibehavior_get_funnel_countriesadmin\class-opti-behavior-funnel-page.php:69

authwp_ajax_optibehavior_track_funneladmin\class-opti-behavior-funnel-page.php:73

noprivwp_ajax_optibehavior_track_funneladmin\class-opti-behavior-funnel-page.php:74

authwp_ajax_opti_behavior_heatmapadmin\class-opti-behavior-heatmap-ajax-handler.php:59

noprivwp_ajax_opti_behavior_heatmapadmin\class-opti-behavior-heatmap-ajax-handler.php:60

authwp_ajax_opti_behavior_heatmap_recordadmin\class-opti-behavior-heatmap-ajax-handler.php:62

noprivwp_ajax_opti_behavior_heatmap_recordadmin\class-opti-behavior-heatmap-ajax-handler.php:63

authwp_ajax_opti_behavior_heatmap_geoadmin\class-opti-behavior-heatmap-ajax-handler.php:65

noprivwp_ajax_opti_behavior_heatmap_geoadmin\class-opti-behavior-heatmap-ajax-handler.php:66

authwp_ajax_optibehavior_top_usersadmin\class-opti-behavior-heatmap-ajax-handler.php:68

authwp_ajax_optibehavior_backfill_pageview_timesadmin\class-opti-behavior-heatmap-ajax-handler.php:69

authwp_ajax_opti_behavior_heatmap_heartbeatadmin\class-opti-behavior-heatmap-ajax-handler.php:72

noprivwp_ajax_opti_behavior_heatmap_heartbeatadmin\class-opti-behavior-heatmap-ajax-handler.php:73

authwp_ajax_opti_behavior_send_support_emailadmin\class-opti-behavior-heatmap-ajax-handler.php:76

authwp_ajax_opti_behavior_reset_country_dataadmin\class-opti-behavior-heatmap-ajax-handler.php:79

authwp_ajax_opti_behavior_run_db_optimizationadmin\class-opti-behavior-heatmap-ajax-handler.php:82

authwp_ajax_opti_behavior_backfill_countriesadmin\class-opti-behavior-heatmap-ajax-handler.php:85

authwp_ajax_optibehavior_dashboard_dataadmin\class-opti-behavior-heatmap-dashboard.php:94

authwp_ajax_optibehavior_session_dataadmin\class-opti-behavior-heatmap-dashboard.php:95

authwp_ajax_optibehavior_analytics_dataadmin\class-opti-behavior-heatmap-dashboard.php:96

authwp_ajax_optibehavior_top_usersadmin\class-opti-behavior-heatmap-dashboard.php:97

authwp_ajax_optibehavior_visitor_heatmapadmin\class-opti-behavior-heatmap-dashboard.php:98

authwp_ajax_optibehavior_recalculate_spamadmin\class-opti-behavior-heatmap-dashboard.php:100

authwp_ajax_optibehavior_recalculate_spam_statusadmin\class-opti-behavior-heatmap-dashboard.php:101

authwp_ajax_optibehavior_delete_all_dataadmin\class-opti-behavior-heatmap-dashboard.php:103

authwp_ajax_optibehavior_delete_data_by_rangeadmin\class-opti-behavior-heatmap-dashboard.php:105

authwp_ajax_optibehavior_smart_cleanup_previewadmin\class-opti-behavior-heatmap-dashboard.php:107

authwp_ajax_optibehavior_smart_cleanup_executeadmin\class-opti-behavior-heatmap-dashboard.php:108

authwp_ajax_optibehavior_bot_cleanupadmin\class-opti-behavior-heatmap-dashboard.php:109

authwp_ajax_optibehavior_save_auto_cleanupadmin\class-opti-behavior-heatmap-dashboard.php:110

authwp_ajax_optibehavior_heatmaps_sessionsadmin\class-opti-behavior-heatmap-dashboard.php:116

authwp_ajax_optibehavior_heatmaps_tableadmin\class-opti-behavior-heatmap-dashboard.php:117

authwp_ajax_opti_behavior_get_debug_logadmin\class-opti-behavior-heatmap-dashboard.php:119

authwp_ajax_opti_behavior_cleanup_by_dateadmin\class-opti-behavior-heatmap-dashboard.php:122

authwp_ajax_opti_behavior_cleanup_by_durationadmin\class-opti-behavior-heatmap-dashboard.php:123

authwp_ajax_opti_behavior_cleanup_orphanedadmin\class-opti-behavior-heatmap-dashboard.php:124

authwp_ajax_opti_behavior_fix_android_osadmin\class-opti-behavior-heatmap-dashboard.php:126

authwp_ajax_optibehavior_get_scheduleadmin\class-opti-behavior-heatmap-dashboard.php:128

authwp_ajax_optibehavior_save_scheduleadmin\class-opti-behavior-heatmap-dashboard.php:129

authwp_ajax_optibehavior_toggle_scheduleadmin\class-opti-behavior-heatmap-dashboard.php:130

authwp_ajax_optibehavior_delete_scheduleadmin\class-opti-behavior-heatmap-dashboard.php:131

authwp_ajax_optibehavior_test_reportadmin\class-opti-behavior-heatmap-dashboard.php:132

authwp_ajax_optibehavior_save_email_settingsadmin\class-opti-behavior-heatmap-dashboard.php:133

authwp_ajax_opti_behavior_start_pro_trialadmin\class-opti-behavior-heatmap-dashboard.php:141

authwp_ajax_opti_behavior_dismiss_trial_banneradmin\class-opti-behavior-heatmap-dashboard.php:142

authwp_ajax_optibehavior_post_analyticsadmin\class-opti-behavior-heatmap-post-metabox.php:54

authwp_ajax_optibehavior_post_timeseriesadmin\class-opti-behavior-heatmap-post-metabox.php:55

authwp_ajax_optibehavior_post_analytics_chartadmin\class-opti-behavior-heatmap-post-metabox.php:56

authwp_ajax_optibehavior_post_referrersadmin\class-opti-behavior-heatmap-post-metabox.php:57

authwp_ajax_optibehavior_post_outbound_clicksadmin\class-opti-behavior-heatmap-post-metabox.php:58

authwp_ajax_optibehavior_post_countriesadmin\class-opti-behavior-heatmap-post-metabox.php:59

authwp_ajax_optibehavior_post_browsersadmin\class-opti-behavior-heatmap-post-metabox.php:60

authwp_ajax_optibehavior_post_devicesadmin\class-opti-behavior-heatmap-post-metabox.php:61

authwp_ajax_opti_behavior_get_heatmap_dataincludes\class-opti-behavior-heatmap-ajax.php:52

authwp_ajax_opti_behavior_get_heatmap_statsincludes\class-opti-behavior-heatmap-ajax.php:53

authwp_ajax_opti_behavior_refresh_heatmap_cacheincludes\class-opti-behavior-heatmap-ajax.php:54

authwp_ajax_opti_behavior_get_device_countsincludes\class-opti-behavior-heatmap-ajax.php:55

authwp_ajax_opti_behavior_get_heatmap_batchincludes\class-opti-behavior-heatmap-ajax.php:56

authwp_ajax_opti_behavior_get_filter_optionsincludes\class-opti-behavior-heatmap-ajax.php:57

authwp_ajax_opti_behavior_get_dependent_filter_optionsincludes\class-opti-behavior-heatmap-ajax.php:58

WordPress Hooks 66

actionadmin_enqueue_scriptsadmin\class-opti-behavior-funnel-page.php:62

actionwp_enqueue_scriptsadmin\class-opti-behavior-funnel-page.php:72

actionwpadmin\class-opti-behavior-funnel-page.php:77

actionshutdownadmin\class-opti-behavior-funnel-page.php:1120

actionadmin_menuadmin\class-opti-behavior-heatmap-admin-settings.php:50

actionadmin_initadmin\class-opti-behavior-heatmap-admin-settings.php:51

actionadmin_menuadmin\class-opti-behavior-heatmap-dashboard.php:89

actionadmin_menuadmin\class-opti-behavior-heatmap-dashboard.php:90

actionadmin_menuadmin\class-opti-behavior-heatmap-dashboard.php:91

actionadmin_enqueue_scriptsadmin\class-opti-behavior-heatmap-dashboard.php:92

filterscript_loader_tagadmin\class-opti-behavior-heatmap-dashboard.php:93

actionadmin_headadmin\class-opti-behavior-heatmap-dashboard.php:112

actionadmin_headadmin\class-opti-behavior-heatmap-dashboard.php:114

actionadmin_initadmin\class-opti-behavior-heatmap-dashboard.php:120

actionadmin_post_opti_behavior_exportadmin\class-opti-behavior-heatmap-dashboard.php:135

actionadmin_initadmin\class-opti-behavior-heatmap-dashboard.php:137

actionload-toplevel_page_opti-behavior-analyticsadmin\class-opti-behavior-heatmap-dashboard.php:139

actionadmin_menuadmin\class-opti-behavior-heatmap-detail-page.php:52

actionadmin_enqueue_scriptsadmin\class-opti-behavior-heatmap-detail-page.php:53

actionadd_meta_boxesadmin\class-opti-behavior-heatmap-post-metabox.php:52

actionadmin_enqueue_scriptsadmin\class-opti-behavior-heatmap-post-metabox.php:53

actionadmin_initincludes\class-opti-behavior-free-tracker.php:84

actionopti_behavior_daily_heartbeatincludes\class-opti-behavior-free-tracker.php:87

actiontemplate_redirectincludes\class-opti-behavior-heatmap-bot-tracker.php:86

actionadmin_initincludes\class-opti-behavior-heatmap-core.php:357

actionopti_behavior_heatmap_cron_dailyincludes\class-opti-behavior-heatmap-core.php:358

actionopti_behavior_aggregate_daily_statsincludes\class-opti-behavior-heatmap-core.php:359

actionopti_behavior_send_scheduled_reportsincludes\class-opti-behavior-heatmap-core.php:360

actionopti_behavior_scheduled_smart_cleanupincludes\class-opti-behavior-heatmap-core.php:361

filterwp_is_mobileincludes\class-opti-behavior-heatmap-core.php:362

actionadmin_initincludes\class-opti-behavior-heatmap-data-protection.php:58

actionadmin_noticesincludes\class-opti-behavior-heatmap-data-protection.php:59

filtercron_schedulesincludes\class-opti-behavior-heatmap-database.php:1722

actionopti_behavior_heatmap_migration_batchincludes\class-opti-behavior-heatmap-migration.php:558

actionshutdownincludes\class-opti-behavior-heatmap-storage.php:90

actionadmin_initincludes\class-opti-behavior-performance-optimizer.php:31

filterwp_mail_content_typeincludes\class-opti-behavior-report-mailer.php:84

actionadmin_noticesincludes\trait-opti-behavior-maintenance.php:128

actionadmin_noticesincludes\trait-opti-behavior-maintenance.php:189

actionadmin_noticesincludes\trait-opti-behavior-settings-views.php:1532

actionadmin_noticesincludes\trait-opti-behavior-settings-views.php:1537

actionadmin_noticesincludes\trait-opti-behavior-settings-views.php:1556

actionadmin_noticesincludes\trait-opti-behavior-settings-views.php:1568

actionadmin_noticesincludes\trait-opti-behavior-settings-views.php:2162

actionadmin_noticesincludes\trait-opti-behavior-settings-views.php:2174

actionadmin_noticesincludes\trait-opti-behavior-settings-views.php:2484

actionadmin_noticesincludes\trait-opti-behavior-settings-views.php:2504

actionadmin_noticesOpti-Behavior.php:25

filteroverride_load_textdomainOpti-Behavior.php:261

actionplugins_loadedOpti-Behavior.php:392

actionadmin_menuOpti-Behavior.php:406

actioninitOpti-Behavior.php:454

filtercron_schedulesOpti-Behavior.php:502

actionwp_enqueue_scriptspublic\class-opti-behavior-heatmap-frontend.php:61

actionwp_enqueue_scriptspublic\class-opti-behavior-heatmap-frontend.php:62

actionshutdownpublic\class-opti-behavior-heatmap-frontend.php:86

filtershow_admin_barpublic\class-opti-behavior-heatmap-frontend.php:97

filterget_user_option_show_admin_bar_frontpublic\class-opti-behavior-heatmap-frontend.php:100

actioninitpublic\class-opti-behavior-heatmap-frontend.php:107

actionwp_headpublic\class-opti-behavior-heatmap-frontend.php:112

actionwp_headpublic\class-opti-behavior-heatmap-frontend.php:117

filterwp_is_mobilepublic\class-opti-behavior-heatmap-frontend.php:136

actionwp_headpublic\class-opti-behavior-heatmap-frontend.php:139

filterbody_classpublic\class-opti-behavior-heatmap-frontend.php:153

actionwppublic\class-opti-behavior-heatmap-frontend.php:175

actionshutdownpublic\class-opti-behavior-heatmap-frontend.php:181

Scheduled Events 10

opti_behavior_daily_heartbeat

opti_behavior_aggregate_daily_stats

opti_behavior_heatmap_cron_daily

opti_behavior_send_scheduled_reports

opti_behavior_heatmap_migration_batch

Maintenance & Trust

Opti-Behavior – Analytics That Grows Your Business Maintenance & Trust

Maintenance Signals

WordPress version tested6.9.4

Last updatedMar 11, 2026

PHP min version7.4

Downloads538

Community Trust

Rating0/100

Number of ratings0

Active installs10

Alternatives

Opti-Behavior – Analytics That Grows Your Business Alternatives

Lucky Orange

lucky-orange

100

Less time crunching numbers, more time growing your business.

2K No CVEs

Reactflow Visitor Recording and Heatmaps

reactflow-session-replay-heatmap

Convert your prospects into customers. Reactflow highlights visual and logical reason why your visitors are not turning into customers, Optimize conve …

300 1 unpatched

Hotjar for WordPress

sws-hotjar

The Hotjar for WordPress plugin adds the tracking code provided by hotjar to your site.

200 No CVEs

UXsniff AI-powered Heatmaps and Session Recordings

ux-sniff

Short Description: AI-powered Heatmaps, Session Recordings & A/B Testing

100 1 unpatched

Session Rewind

session-rewind

Optimize your web experience with video recordings of user behavior.

90 No CVEs

Developer Profile

Opti-Behavior – Analytics That Grows Your Business Developer Profile

OptiUser

1 plugin · 10 total installs

trust score

Avg Security Score

100/100

Avg Patch Time

30 days

View full developer profile

Detection Fingerprints

How We Detect Opti-Behavior – Analytics That Grows Your Business

Patterns used to identify this plugin on WordPress sites during automated security audits and web crawling.

Asset Fingerprints

Asset Paths

/wp-content/plugins/opti-behavior/assets/css/public.css/wp-content/plugins/opti-behavior/assets/js/public.js

Script Paths

/wp-content/plugins/opti-behavior/assets/js/public.js

Version Parameters

opti-behavior/assets/css/public.css?ver=opti-behavior/assets/js/public.js?ver=

HTML / DOM Fingerprints

FAQ