Quran Live Multilanguage Security & Risk Analysis
wordpress.org/plugins/quran-liveQuran live Multilanguage translated into 29 languages.
Is Quran Live Multilanguage Safe to Use in 2026?
Generally Safe
Score 85/100Quran Live Multilanguage has no known CVEs and is actively maintained. It's a solid choice for most WordPress installations.
This plugin, quran-live v1.0.3, exhibits a mixed security posture. On the positive side, it utilizes prepared statements for all SQL queries and has no known past vulnerabilities, which suggests a degree of care in development or a lack of extensive auditing.
However, significant concerns arise from the attack surface. With 5 total entry points, 4 of which lack authentication checks, there's a substantial risk of unauthorized access and potential manipulation. The taint analysis also reveals 3 flows with unsanitized paths, indicating that user-supplied data might be processed without proper validation, potentially leading to vulnerabilities like path traversal or local file inclusion. While no critical or high severity taint flows were identified, the presence of unsanitized paths is a notable weakness. The low percentage of properly escaped output (12%) further exacerbates these risks, making cross-site scripting (XSS) a plausible threat.
In conclusion, while the absence of known CVEs and the use of prepared statements are strengths, the unprotected AJAX handlers and unsanitized data flows represent critical vulnerabilities that need immediate attention. The low output escaping rate is also a significant concern. This plugin requires substantial improvement in its input validation, output sanitization, and authentication mechanisms to be considered secure.
Key Concerns
- Large attack surface without auth
- Unsanitized path taint flows
- Low output escaping rate
- Missing nonce checks on AJAX
- Missing capability checks
Quran Live Multilanguage Security Vulnerabilities
Quran Live Multilanguage Code Analysis
Output Escaping
Data Flow Analysis
Quran Live Multilanguage Attack Surface
AJAX Handlers 4
Shortcodes 1
WordPress Hooks 3
Maintenance & Trust
Quran Live Multilanguage Maintenance & Trust
Maintenance Signals
Community Trust
Quran Live Multilanguage Alternatives
Holy Quran random verse Multilanguage
holy-quran-random-verse-multilanguage
to fix error "quran_random block was affected by errors and may not function properly."
Quran multilanguage Text & Audio
quran-text-multilanguage
Quran plugin with 30 languages, 32 reciters, and customizable interface.
Salat Times
salat-times
Salat (Namaz) timetable for any location around the world!
Zakah Calculator
zakah-calculator
It is a simple and easy way to know how to fulfill the obligation of Zakah.
Hijri Calendar
hijri-calendar
Easily display current Hijri/Islamic date (according to hijri calendar), anywhere in your wordpress blog!
Quran Live Multilanguage Developer Profile
4 plugins · 760 total installs
How We Detect Quran Live Multilanguage
Patterns used to identify this plugin on WordPress sites during automated security audits and web crawling.
Asset Fingerprints
/wp-content/plugins/quran-live/icon_quranlive.png/wp-content/plugins/quran-live/template/js/quranlive_load.js/wp-content/plugins/quran-live/template/js/screenfull.js/wp-content/plugins/quran-live/template/js/quranlive_load.js/wp-content/plugins/quran-live/template/js/screenfull.jsquran-live/template/js/quranlive_load.js?ver=1.0quran-live/template/js/screenfull.js?ver=1.0HTML / DOM Fingerprints
border_tpl_quranwrapform-tableid="bloc_admin_quran"id="thadminquran"name="option[template_quran_live]"name="option[tpl_quran_live]"name="option[background_quranlive_color]"id="quran_live_languages"