WP-Safety

REXADZ Monetization Security & Risk Analysis

wordpress.org/plugins/rexadz-monetization

REXADZ is a simple and user-friendly ad solution that makes you money by automatically displaying targeted ads to your website visitors.

10 active installs v1.0 PHP + WP 4.0+ Updated Nov 22, 2016
advertisingearn-money-onlinegoogle-adsense-alternativerexadzwebsite-monetization
85
A · Safe
CVEs total0
Unpatched0
Last CVENever
Plugin page Download
Safety Verdict

Is REXADZ Monetization Safe to Use in 2026?

Generally Safe

Score 85/100

REXADZ Monetization has no known CVEs and is actively maintained. It's a solid choice for most WordPress installations.

No known CVEs Updated 9yr ago
Risk Assessment

The "rexadz-monetization" v1.0 plugin exhibits a mixed security posture. While it boasts no known vulnerabilities in its history and a limited attack surface with only one shortcode as an entry point, the static analysis reveals significant concerns. The lack of nonce checks and capability checks across all identified entry points is a major weakness, leaving the plugin susceptible to various attacks if an attacker can trigger the shortcode. Furthermore, a high percentage of SQL queries (61%) are not using prepared statements, increasing the risk of SQL injection vulnerabilities. The taint analysis also indicates a high severity flow with unsanitized paths, which could be a precursor to more severe vulnerabilities, though currently not classified as critical or high. The plugin's output escaping is also a concern, with only 36% properly escaped, potentially leading to cross-site scripting (XSS) vulnerabilities. Overall, despite a clean vulnerability history, the presence of multiple exploitable weaknesses in the code necessitates caution.

Key Concerns

  • No nonce checks on entry points
  • No capability checks on entry points
  • High percentage of non-prepared SQL queries
  • Low percentage of properly escaped output
  • High severity taint flow with unsanitized paths
Vulnerabilities
None known

REXADZ Monetization Security Vulnerabilities

No known vulnerabilities — this is a good sign.
Code Analysis
Analyzed Mar 16, 2026

REXADZ Monetization Code Analysis

Dangerous Functions
0
Raw SQL Queries
11
7 prepared
Unescaped Output
62
35 escaped
Nonce Checks
0
Capability Checks
0
File Operations
0
External Requests
0
Bundled Libraries
0

SQL Query Safety

39% prepared18 total queries

Output Escaping

36% escaped97 total outputs
Data Flows
5 unsanitized

Data Flow Analysis

5 flows5 with unsanitized paths
search_box (inc\classes\class-rcp-tables.php:194)
Source (user input) Sink (dangerous op) Sanitizer Transform Unsanitized Sanitized
Attack Surface

REXADZ Monetization Attack Surface

Entry Points1
Unprotected0

Shortcodes 1

[rcp] inc\functions.php:49
WordPress Hooks 11
actionadmin_footerinc\classes\class-rcp-tables.php:93
actionadmin_headinc\functions.php:18
actionwpmu_new_bloginc\functions.php:137
filterwpmu_drop_tablesinc\functions.php:147
filterthe_contentrexadz-code-placement.php:34
filterwidget_textrexadz-code-placement.php:35
filterthe_excerptrexadz-code-placement.php:36
filterthe_contentrexadz-code-placement.php:39
filterwidget_textrexadz-code-placement.php:40
filterthe_excerptrexadz-code-placement.php:41
actionadmin_menurexadz-code-placement.php:54
Maintenance & Trust

REXADZ Monetization Maintenance & Trust

Maintenance Signals

WordPress version tested4.6.30
Last updatedNov 22, 2016
PHP min version
Downloads1K

Community Trust

Rating100/100
Number of ratings1
Active installs10
Alternatives

REXADZ Monetization Alternatives

Website Article Monetization By MageNet

Website Article Monetization By MageNet

website-article-monetization-by-magenet

A
100

Get additional income from your website or blog by placing text ads automatically.

20K 1 CVE
Website Monetization by MageNet

Website Monetization by MageNet

website-monetization-by-magenet

A
100

Get additional income from your website or blog by placing text ads automatically.

20K 1 CVE
Ads.txt Manager

Ads.txt Manager

ads-txt

A
100

Create, manage, and validate your ads.txt and app-ads.txt from within WordPress, like any other content asset.

100K No CVEs
Advanced Popups

Advanced Popups

advanced-popups

A
100

Display high-converting newsletter popups, a cookie notice, or a notification with the light-weight yet feature-rich plugin.

70K 1 CVE
AI Powered Marketing

AI Powered Marketing

kliken-marketing-for-google

A
100

Kliken's all-in-one marketing helps businesses reach high-intent customers, beat the competition and see sales growth while lowering conversion costs

60K No CVEs
Developer Profile

REXADZ Monetization Developer Profile

rexdirectnet

1 plugin · 10 total installs

84
trust score
Avg Security Score
85/100
Avg Patch Time
30 days
View full developer profile
Detection Fingerprints

How We Detect REXADZ Monetization

Patterns used to identify this plugin on WordPress sites during automated security audits and web crawling.

Asset Fingerprints

Asset Paths
/wp-content/plugins/rexadz-monetization/inc/functions.php/wp-content/plugins/rexadz-monetization/inc/classes/class-rcp-tables.php/wp-content/plugins/rexadz-monetization/inc/classes/class-rcp-table.php/wp-content/plugins/rexadz-monetization/inc/install.php/wp-content/plugins/rexadz-monetization/inc/uninstall.php
Version Parameters
rexadz-code/style.css?ver=1.0

HTML / DOM Fingerprints

HTML Comments
<!-- Original by WordPress -->
FAQ

Frequently Asked Questions about REXADZ Monetization