Does Post views Stats have any unpatched vulnerabilities?

No. All known vulnerabilities in Post views Stats have been patched as of the latest data update. Always keep the plugin updated to the latest version.

Is Post views Stats compatible with WordPress 6.8.5?

According to WordPress.org data, Post views Stats 1.5 has been tested up to WordPress 6.8.5. Check the plugin's changelog for the latest compatibility information.

How often is Post views Stats updated?

Post views Stats was last updated on Nov 17, 2025. Frequent updates are generally a positive security signal.

What is Post views Stats's security score?

Post views Stats has a WP-Safety security score of 100/100. This score is computed from CVE history, patch response time, developer trust signals, and plugin maintenance activity.

Post views Stats Security & Risk Analysis

wordpress.org/plugins/post-views-stats

This plugins will count each post/page views by visitor.

1K active installs v1.5 PHP + WP 2.9.2+ Updated Nov 17, 2025

post-viewpost-view-countpost-view-countspost-views-statsview-count

A · Safe

CVEs total1

Unpatched0

Last CVEJan 16, 2024

Plugin page Download

Safety Verdict

Is Post views Stats Safe to Use in 2026?

Generally Safe

Score 100/100

Post views Stats has a strong security track record. Known vulnerabilities have been patched promptly.

1 known CVELast CVE: Jan 16, 2024Updated 4mo ago

Risk Assessment

The 'post-views-stats' plugin v1.5 exhibits a generally strong security posture in its static analysis. The absence of an attack surface in terms of AJAX handlers, REST API routes, shortcodes, and cron events is a significant positive. All observed SQL queries utilize prepared statements, and there are no detected file operations or external HTTP requests, further minimizing common attack vectors. The code also benefits from a reasonable level of output escaping, with 72% of outputs being properly handled. However, the complete lack of nonce checks and capability checks across all entry points is a notable concern. While the static analysis did not reveal any specific unsanitized taint flows, the absence of these crucial security mechanisms could allow for unauthorized actions if any vulnerabilities were to emerge.

Key Concerns

No nonce checks
No capability checks
Only 72% of outputs properly escaped
1 medium CVE historically

Vulnerabilities

Post views Stats Security Vulnerabilities

CVEs by Year

1 CVE in 2024

2024

Patched Has unpatched

Severity Breakdown

Medium

1 total CVE

CVE-2024-22289medium · 6.1Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting')

Post views Stats <= 1.3 - Reflected Cross-Site Scripting via from and to

Jan 16, 2024 Patched in 1.4.1 (127d)

Code Analysis

Analyzed Mar 16, 2026

Post views Stats Code Analysis

Dangerous Functions

Raw SQL Queries

11 prepared

Unescaped Output

39 escaped

Nonce Checks

Capability Checks

File Operations

External Requests

Bundled Libraries

SQL Query Safety

100% prepared11 total queries

Output Escaping

72% escaped54 total outputs

Data Flows

All sanitized

Data Flow Analysis

2 flows

<view-most-popular> (view-most-popular.php:0)

Source (user input) Sink (dangerous op) Sanitizer Transform Unsanitized Sanitized

Attack Surface

Post views Stats Attack Surface

Entry Points0

Unprotected0

WordPress Hooks 10

actionadmin_enqueue_scriptscn-post-views-stats.php:54

actionadmin_menucn-post-views-stats.php:93

actionwp_headcn-post-views-stats.php:166

actionadmin_initcn-post-views-stats.php:207

actionadmin_headcn-post-views-stats.php:208

actionwidgets_initcn-post-views-stats.php:296

filtermanage_posts_columnscn-post-views-stats.php:297

actionmanage_posts_custom_columncn-post-views-stats.php:298

filtermanage_pages_columnscn-post-views-stats.php:300

actionmanage_pages_custom_columncn-post-views-stats.php:301

Maintenance & Trust

Post views Stats Maintenance & Trust

Maintenance Signals

WordPress version tested6.8.5

Last updatedNov 17, 2025

PHP min version

Downloads66K

Community Trust

Rating70/100

Number of ratings15

Active installs1K

Alternatives

Post views Stats Alternatives

Page View Count

page-views-count

Places an icon, all time views count and views today count at the bottom of posts, pages and custom post types on any WordPress website.

10K 1 unpatched

Wp Post Views – WordPress Post views counter

wp-post-views

100

Wordpress Post views counter

4K No CVEs

Timify

timify

With Timify, let your audience know about the last modified date, publish date, and reading time of your articles. You can also customize each setting …

100 No CVEs

Bubuku post view count

bubuku-post-view-count

Complement to know how many times a Post has been seen

0 No CVEs

Simple Page Views with Analytics

simple-page-views-with-analytics

Track page views, devices, browsers, and countries with this lightweight plugin. Display data using a simple shortcode anywhere on your site.

0 No CVEs

Developer Profile

Post views Stats Developer Profile

CyberNetikz

5 plugins · 31K total installs

trust score

Avg Security Score

98/100

Avg Patch Time

967 days

View full developer profile

Detection Fingerprints

How We Detect Post views Stats

Patterns used to identify this plugin on WordPress sites during automated security audits and web crawling.

Asset Fingerprints

Asset Paths

/wp-content/plugins/post-views-stats/css/admin-style.css/wp-content/plugins/post-views-stats/css/jquery-ui.css

Version Parameters

post-views-stats/css/admin-style.css?ver=post-views-stats/css/jquery-ui.css?ver=

HTML / DOM Fingerprints

CSS Classes

cn_admin_banner

Data Attributes

id="from"id="to"

JS Globals

jQuery

FAQ