Does Random User IDs have any unpatched vulnerabilities?

No. All known vulnerabilities in Random User IDs have been patched as of the latest data update. Always keep the plugin updated to the latest version.

Is Random User IDs compatible with WordPress 6.8.0?

According to WordPress.org data, Random User IDs 20201115.1 has been tested up to WordPress 6.8.0. Check the plugin's changelog for the latest compatibility information.

How often is Random User IDs updated?

Random User IDs was last updated on Jan 27, 2025. Frequent updates are generally a positive security signal.

What is Random User IDs's security score?

Random User IDs has a WP-Safety security score of 92/100. This score is computed from CVE history, patch response time, developer trust signals, and plugin maintenance activity.

Random User IDs Security & Risk Analysis

wordpress.org/plugins/random-user-ids

This WordPress plugin randomizes the user_id for the user created on WordPress setup, removing one potential attack factor from the site.

300 active installs v20201115.1 PHP + WP 3.1+ Updated Jan 27, 2025

securityuser-ids

A · Safe

CVEs total0

Unpatched0

Last CVENever

Plugin page Download

Safety Verdict

Is Random User IDs Safe to Use in 2026?

Generally Safe

Score 92/100

Random User IDs has no known CVEs and is actively maintained. It's a solid choice for most WordPress installations.

No known CVEs Updated 1yr ago

Risk Assessment

The 'random-user-ids' plugin v20201115.1 demonstrates a generally positive security posture based on the provided static analysis. The absence of any reported CVEs, combined with a clean taint analysis and no direct SQL queries or dangerous function calls, suggests a well-written and secure codebase. The plugin also doesn't appear to introduce significant attack vectors through AJAX, REST API, shortcodes, or cron events, as all entry points are either absent or have no reported authentication checks, which is a concern for potential future additions but not a current issue. The lack of explicit nonce and capability checks is notable, especially since there are no reported entry points requiring them, but this could be a vulnerability if functionality is added without these protections. The primary concern lies in the complete lack of output escaping, meaning any data output by the plugin could be susceptible to cross-site scripting (XSS) attacks if that data is user-controllable or derived from external sources without sanitization prior to being displayed. While the plugin has no known vulnerabilities and a seemingly small attack surface, the unescaped output represents a potential weakness that should be addressed.

Key Concerns

All outputs are unescaped

Vulnerabilities

None known

Random User IDs Security Vulnerabilities

No known vulnerabilities — this is a good sign.

Code Analysis

Analyzed Mar 16, 2026

Random User IDs Code Analysis

Dangerous Functions

Raw SQL Queries

0 prepared

Unescaped Output

0 escaped

Nonce Checks

Capability Checks

File Operations

External Requests

Bundled Libraries

Output Escaping

0% escaped2 total outputs

Attack Surface

Random User IDs Attack Surface

Entry Points0

Unprotected0

WordPress Hooks 4

filterwp_pre_insert_user_datadfx-random-user-id.php:66

actionadmin_noticesdfx-random-user-id.php:149

actionadmin_initdfx-random-user-id.php:166

actionplugins_loadeddfx-random-user-id.php:173

Maintenance & Trust

Random User IDs Maintenance & Trust

Maintenance Signals

WordPress version tested6.8.0

Last updatedJan 27, 2025

PHP min version

Downloads7K

Community Trust

Rating80/100

Number of ratings5

Active installs300

Alternatives

Random User IDs Alternatives

Wordfence Security – Firewall, Malware Scan, and Login Security

wordfence

Firewall, Malware Scanner, Two Factor Auth, and Comprehensive Security Features, powered by our 24-hour team. Make security a priority with Wordfence.

5.0M 12 CVEs

Hostinger Tools

hostinger

Simplified WordPress management. Manage site info, maintenance, security, & redirects.

3.0M 1 CVE

Jetpack – WP Security, Backup, Speed, & Growth

jetpack

Improve your WP security with powerful one-click tools like backup, WAF, and malware scan. Includes free tools like stats, CDN and social sharing.

3.0M 24 CVEs

Really Simple Security – Simple and Performant Security (formerly Really Simple SSL)

really-simple-ssl

Easily improve site security with WordPress Hardening, Two-Factor Authentication (2FA), Login Protection, Vulnerability Detection and SSL certificate.

3.0M 2 CVEs

Limit Login Attempts Reloaded – Login Security, Brute Force Protection, Firewall

limit-login-attempts-reloaded

Block excessive login attempts and protect your site against brute force attacks. Simple, yet powerful tools to improve site performance.

2.0M 4 CVEs

Developer Profile

Random User IDs Developer Profile

David Marín Carreño

2 plugins · 700 total installs

trust score

Avg Security Score

92/100

Avg Patch Time

30 days

View full developer profile

Detection Fingerprints

How We Detect Random User IDs

Patterns used to identify this plugin on WordPress sites during automated security audits and web crawling.

Asset Fingerprints

Asset Paths

/wp-content/plugins/random-user-ids/

HTML / DOM Fingerprints

FAQ