Does Referrer Insights have any unpatched vulnerabilities?

No. All known vulnerabilities in Referrer Insights have been patched as of the latest data update. Always keep the plugin updated to the latest version.

Is Referrer Insights compatible with WordPress 6.9.4?

According to WordPress.org data, Referrer Insights 1.0.0 has been tested up to WordPress 6.9.4. Check the plugin's changelog for the latest compatibility information.

Is Referrer Insights compatible with PHP 7.4+?

Referrer Insights requires PHP 7.4 or higher. Most modern WordPress hosts run PHP 8.1 or 8.2. If you are on an older PHP version, consider upgrading before installing this plugin.

How often is Referrer Insights updated?

Referrer Insights was last updated on Unknown. Frequent updates are generally a positive security signal.

What is Referrer Insights's security score?

Referrer Insights has a WP-Safety security score of 100/100. This score is computed from CVE history, patch response time, developer trust signals, and plugin maintenance activity.

Referrer Insights Security Review — Score 100/100 (safe)

Safety Verdict

Is Referrer Insights Safe to Use in 2026?

Generally Safe

Score 100/100

Referrer Insights has no known CVEs and is actively maintained. It's a solid choice for most WordPress installations.

No known CVEs

Risk Assessment

The 'referrer-insights' plugin v1.0.0 exhibits a generally strong security posture, with developers employing good practices in key areas. The static analysis reveals a low attack surface, with all identified entry points (AJAX handlers and shortcodes) appearing to have proper authentication and permission checks. The code demonstrates a significant commitment to security with a high percentage of SQL queries using prepared statements and output being properly escaped. Furthermore, the plugin has no recorded vulnerabilities, indicating a history of secure development and maintenance. There are no critical or high-severity taint flows detected, nor are there any known CVEs associated with this version. However, a minor concern exists due to the presence of file operations, which, while not inherently insecure, represent a potential entry point if not handled with extreme care. Overall, the plugin is well-developed from a security perspective, with its strengths significantly outweighing its minimal potential weaknesses.

Vulnerabilities

None known

Referrer Insights Security Vulnerabilities

No known vulnerabilities — this is a good sign.

Code Analysis

Analyzed Mar 17, 2026

Referrer Insights Code Analysis

Dangerous Functions

0

Raw SQL Queries

1

43 prepared

Unescaped Output

4

102 escaped

Nonce Checks

11

Capability Checks

12

File Operations

1

External Requests

0

Bundled Libraries

0

SQL Query Safety

98% prepared44 total queries

Output Escaping

96% escaped106 total outputs

Data Flows

All sanitized

Data Flow Analysis

10 flows

display_admin_page (includes\class-referrer-insights.php:245)

Source (user input) Sink (dangerous op) Sanitizer Transform Unsanitized Sanitized

Attack Surface

Referrer Insights Attack Surface

Entry Points3

Unprotected0

AJAX Handlers 2

authwp_ajax_referrer_insights_paginationincludes\class-referrer-insights.php:60

authwp_ajax_referrer_insights_analytics_dataincludes\class-referrer-insights.php:61

Shortcodes 1

[referrer_insights_data] includes\class-referrer-insights.php:62

WordPress Hooks 4

actiontemplate_redirectincludes\class-referrer-insights.php:56

actionadmin_menuincludes\class-referrer-insights.php:57

actionadmin_enqueue_scriptsincludes\class-referrer-insights.php:58

actionadmin_initincludes\class-referrer-insights.php:59

Maintenance & Trust

Referrer Insights Maintenance & Trust

Maintenance Signals

WordPress version tested6.9.4

Last updatedUnknown

PHP min version7.4

Downloads137

Community Trust

Rating0/100

Number of ratings0

Active installs0

Alternatives

Referrer Insights Alternatives

AesirX Analytics

aesirx-analytics

A

100

Enhance website tracking with the AesirX Analytics WordPress plugin, using privacy-friendly first-party analytics for accurate insights.

100 No CVEs

Sweet Analytics WooCommerce

sweet-woocommerce

A

92

Install the Sweet Analytics Tracker and gain access to all enhanced ecommerce functionalities for advanced insights.

10 No CVEs

Tracking Code for Linkedin Insights Tag

tracking-code-for-linkedin-insights-tag

A

92

Simple, lightweight solution for inserting your Linkedin Insights Tag Universal tracking code.

10 No CVEs

Form Insights Tracker

form-insights-tracker

A

92

Track and analyze Contact Form 7 submissions to improve engagement and conversions.

0 No CVEs

Site Kit by Google – Analytics, Search Console, AdSense, Speed

google-site-kit

A

100

Site Kit is a one-stop solution for WordPress users to use everything Google has to offer to make them successful on the web.

5.0M 1 CVE

Developer Profile

Referrer Insights Developer Profile

Pranshtech Solutions Private Limited

4 plugins · 10 total installs

94

trust score

Avg Security Score

100/100

Avg Patch Time

30 days

View full developer profile

Detection Fingerprints

How We Detect Referrer Insights

Patterns used to identify this plugin on WordPress sites during automated security audits and web crawling.

Asset Fingerprints

Asset Paths

/wp-content/plugins/referrer-insights/admin/css/referrer-insights-admin.css/wp-content/plugins/referrer-insights/admin/js/referrer-insights-admin.js

Script Paths

/wp-content/plugins/referrer-insights/admin/js/referrer-insights-admin.js

Version Parameters

referrer-insights/admin/css/referrer-insights-admin.css?ver=referrer-insights/admin/js/referrer-insights-admin.js?ver=

HTML / DOM Fingerprints

JS Globals

window.wp_ajax_urlwindow.referrer_insights_noncewindow.referrer_insights_chart_datawindow.referrer_insights_table_data

Shortcode Output

[referrer_insights_data]

FAQ

Referrer Insights Security & Risk Analysis