Does Quick Browscap have any unpatched vulnerabilities?

No published vulnerabilities and no findings under coordinated disclosure as of the latest data update. Always keep the plugin updated to the latest version.

Is Quick Browscap compatible with WordPress 3.4.2?

According to WordPress.org data, Quick Browscap 1.03 has been tested up to WordPress 3.4.2. Check the plugin's changelog for the latest compatibility information.

How often is Quick Browscap updated?

Quick Browscap was last updated on Aug 29, 2012. Frequent updates are generally a positive security signal.

What is Quick Browscap's security score?

Quick Browscap has a WP-Safety security score of 85/100. This score is computed from CVE history, patch response time, developer trust signals, and plugin maintenance activity.

Quick Browscap Security & Risk Analysis

wordpress.org/plugins/quick-browscap

Quick Browscap allows you to quickly get detailed browser capabilities from user agent string.

30 active installs v1.03 PHP + WP 3.0+ Updated Aug 29, 2012

browscapbrowser-capabilitiesbrowser-infouser-agent

A · Safe

CVEs total0

Unpatched0

Last CVENever

Plugin page Download

Safety Verdict

Is Quick Browscap Safe to Use in 2026?

Generally Safe

Score 85/100

Quick Browscap has no known CVEs and is actively maintained. It's a solid choice for most WordPress installations.

No known CVEs Updated 13yr ago

Risk Assessment

The "quick-browscap" plugin version 1.03 exhibits a mixed security posture. On the positive side, it has a remarkably small attack surface, with no identified AJAX handlers, REST API routes, shortcodes, or cron events. Furthermore, all its SQL queries are properly prepared, and it has no known past or present CVEs, suggesting a generally stable and well-maintained codebase in these areas. However, there are significant concerns. The use of the `create_function` PHP function is a critical security risk due to its potential for arbitrary code execution, especially if user input is involved. Additionally, a concerningly low percentage (29%) of its output is properly escaped, indicating a high risk of cross-site scripting (XSS) vulnerabilities if any user-supplied data is rendered in the frontend without adequate sanitization. The lack of nonce and capability checks on any potential entry points, though currently limited, further exacerbates these risks, as it implies that any future additions to the attack surface could be exploited without proper authorization or validation.

Key Concerns

Dangerous function used (create_function)
Low percentage of output properly escaped
No nonce checks implemented
No capability checks implemented

Vulnerabilities

None known

Quick Browscap Security Vulnerabilities

No known vulnerabilities — this is a good sign.

Version History

Quick Browscap Release Timeline

No version history available.

Code Analysis

Analyzed Mar 16, 2026

Quick Browscap Code Analysis

Dangerous Functions

Raw SQL Queries

0 prepared

Unescaped Output

4 escaped

Nonce Checks

Capability Checks

File Operations

External Requests

Bundled Libraries

Dangerous Functions Found

create_functioncreate_function(self::order_func_args, self::order_func_logic)quick-browscap.php:443

Output Escaping

29% escaped14 total outputs

Attack Surface

Quick Browscap Attack Surface

Entry Points0

Unprotected0

WordPress Hooks 7

actionplugins_loadedquick-browscap.php:76

filterplugin_row_metaquick-browscap.php:77

actioninitquick-browscap.php:78

actionadmin_initquick-browscap.php:80

actionadmin_menuquick-browscap.php:81

filtercron_schedulesquick-browscap.php:85

filterplugin_action_linksquick-browscap.php:255

Maintenance & Trust

Quick Browscap Maintenance & Trust

Maintenance Signals

WordPress version tested3.4.2

Last updatedAug 29, 2012

PHP min version

Downloads3K

Community Trust

Rating0/100

Number of ratings0

Active installs30

Alternatives

Quick Browscap Alternatives

IP Ban

simple-ip-ban

Simple IP Ban is a lightweight ip / user agent ban plugin.

2K 1 CVE

Friendly User Agent for WooCommerce

woo-friendly-user-agent

Displays the user agent (device/platform, browser and browser version) that was used by a customer to make an order in your WooCommerce store.

500 No CVEs

Super Browser Detector

user-agent-body-class

License: GPLv2 or later Super Browser Detector adds PHP user agent information to the body class

200 No CVEs

WP-UserAgent

wp-useragent

WP-UserAgent is a simple plugin that allows you to display details about a computer's operating system or web browser that your visitors comment …

200 No CVEs

User Agent Blocker

user-agent-blocker

Block robots using it's User-Agent in .htaccess

70 No CVEs

Developer Profile

Quick Browscap Developer Profile

Marko-M

2 plugins · 130 total installs

trust score

Avg Security Score

85/100

Avg Patch Time

30 days

View full developer profile

Detection Fingerprints

How We Detect Quick Browscap

Patterns used to identify this plugin on WordPress sites during automated security audits and web crawling.

Asset Fingerprints

Asset Paths

/wp-content/plugins/quick-browscap/css/quick-browscap.css

Script Paths

/wp-content/plugins/quick-browscap/js/quick-browscap.js

Version Parameters

quick-browscap/css/quick-browscap.css?ver=quick-browscap/js/quick-browscap.js?ver=

HTML / DOM Fingerprints

HTML Comments

+5 more

Data Attributes

data-quick-browscap-admin

JS Globals

quick_browscap_ajax_object

Shortcode Output

[quick_browscap]

FAQ