Does Safe Ai Malware Protection for WP have any unpatched vulnerabilities?

Yes — Safe Ai Malware Protection for WP currently has 1 published unpatched vulnerability. We recommend switching to an alternative or applying any available workarounds.

Is Safe Ai Malware Protection for WP compatible with WordPress 6.7.5?

According to WordPress.org data, Safe Ai Malware Protection for WP 1.0.20 has been tested up to WordPress 6.7.5. Check the plugin's changelog for the latest compatibility information.

Is Safe Ai Malware Protection for WP compatible with PHP 7.4+?

Safe Ai Malware Protection for WP requires PHP 7.4 or higher. Most modern WordPress hosts run PHP 8.1 or 8.2. If you are on an older PHP version, consider upgrading before installing this plugin.

How often is Safe Ai Malware Protection for WP updated?

Safe Ai Malware Protection for WP was last updated on Feb 22, 2025. Frequent updates are generally a positive security signal.

What is Safe Ai Malware Protection for WP's security score?

Safe Ai Malware Protection for WP has a WP-Safety security score of 68/100. This score is computed from CVE history, patch response time, developer trust signals, and plugin maintenance activity.

Safe Ai Malware Protection for WP Security & Risk Analysis

wordpress.org/plugins/safe-ai-malware-protection-for-wp

Secure Your WordPress Site with Cutting-Edge Protection

600 active installs v1.0.20 PHP 7.4+ WP 5.0+ Updated Feb 22, 2025

malwaremalware-cleanersecuritywordpress-security

C · Use Caution

CVEs total2

Unpatched1

Last CVEMar 31, 2025

Plugin page Download

Safety Verdict

Is Safe Ai Malware Protection for WP Safe to Use in 2026?

Use With Caution

Score 68/100

Safe Ai Malware Protection for WP has 1 unpatched vulnerability. Evaluate alternatives or apply available mitigations.

2 known CVEs 1 unpatched Last CVE: Mar 31, 2025Updated 1yr ago

Risk Assessment

The "safe-ai-malware-protection-for-wp" plugin, version 1.0.20, exhibits a mixed security posture. While it demonstrates some good practices such as a high percentage of SQL queries using prepared statements and a moderate rate of output escaping, significant concerns are present. The attack surface is moderately large with 45 entry points, and notably, 3 of these REST API routes lack permission callbacks, indicating potential unauthorized access vectors. The absence of capability checks in the code analysis is a critical omission that, when combined with unprotected entry points, raises serious security flags. The vulnerability history is a major red flag, with two known CVEs, one of which is still unpatched and rated as high severity. The common vulnerability type of 'Missing Authorization' further corroborates the findings from the static analysis regarding unprotected entry points. This pattern suggests a recurring issue with access control within the plugin, which could be exploited to compromise the WordPress site. Overall, while some basic security measures are in place, the unpatched high-severity vulnerability and the presence of unprotected entry points necessitate immediate attention.

Key Concerns

Unpatched High Severity CVE
REST API routes without permission callbacks
No capability checks in code
Unpatched Medium Severity CVE
SQL queries without prepared statements
Output not properly escaped

Vulnerabilities

2 published

Safe Ai Malware Protection for WP Security Vulnerabilities

CVEs by Year

2 CVEs in 2025 · unpatched

2025

Patched Has unpatched

Severity Breakdown

High

Medium

2 total CVEs

CVE-2025-31545medium · 4.3Missing Authorization

Safe Ai Malware Protection for WP <= 1.0.20 - Missing Authorization

Mar 31, 2025Unpatched

CVE-2024-12269high · 7.5Missing Authorization

Safe Ai Malware Protection for WP <= 1.0.17 - Missing Authorization to Unauthenticated Database Export

Jan 30, 2025 Patched in 1.0.18 (16d)

Version History

Safe Ai Malware Protection for WP Release Timeline

v1.0.20Current1 CVE

CVE-2025-31545

v1.0.191 CVE

CVE-2025-31545

v1.0.181 CVE

CVE-2025-31545

v1.0.172 CVEs

CVE-2024-12269 CVE-2025-31545

v1.0.162 CVEs

CVE-2024-12269 CVE-2025-31545

v1.0.152 CVEs

CVE-2024-12269 CVE-2025-31545

v1.0.142 CVEs

CVE-2024-12269 CVE-2025-31545

v1.0.132 CVEs

CVE-2024-12269 CVE-2025-31545

v1.0.122 CVEs

CVE-2024-12269 CVE-2025-31545

v1.0.112 CVEs

CVE-2024-12269 CVE-2025-31545

v1.0.102 CVEs

CVE-2024-12269 CVE-2025-31545

v1.0.92 CVEs

CVE-2024-12269 CVE-2025-31545

v1.0.82 CVEs

CVE-2024-12269 CVE-2025-31545

v1.0.72 CVEs

CVE-2024-12269 CVE-2025-31545

v1.0.62 CVEs

CVE-2024-12269 CVE-2025-31545

v1.0.52 CVEs

CVE-2024-12269 CVE-2025-31545

v1.0.42 CVEs

CVE-2024-12269 CVE-2025-31545

Code Analysis

Analyzed Mar 16, 2026

Safe Ai Malware Protection for WP Code Analysis

Dangerous Functions

Raw SQL Queries

6 prepared

Unescaped Output

15 escaped

Nonce Checks

Capability Checks

File Operations

122

External Requests

Bundled Libraries

SQL Query Safety

67% prepared9 total queries

Output Escaping

63% escaped24 total outputs

Attack Surface

3 unprotected

Safe Ai Malware Protection for WP Attack Surface

Entry Points45

Unprotected3

AJAX Handlers 4

authwp_ajax_generate_store_tokenincludes\class-mvsp-ajax.php:9

noprivwp_ajax_generate_store_tokenincludes\class-mvsp-ajax.php:10

authwp_ajax_disconnect_siteincludes\class-mvsp-ajax.php:12

noprivwp_ajax_disconnect_siteincludes\class-mvsp-ajax.php:13

REST API Routes 41

POST/wp-json/mvsp/v1/authenticationincludes\class-mvsp-rest-api.php:31

POST/wp-json/mvsp/v1/export-dbincludes\class-mvsp-rest-api.php:37

POST/wp-json/mvsp/v1/delete-exported-dbincludes\class-mvsp-rest-api.php:44

POST/wp-json/mvsp/v1/delete-db-configincludes\class-mvsp-rest-api.php:50

POST/wp-json/mvsp/v1/wp-core-hashincludes\class-mvsp-rest-api.php:56

POST/wp-json/mvsp/v1/upload-files-hashincludes\class-mvsp-rest-api.php:62

POST/wp-json/mvsp/v1/generate-core-hashincludes\class-mvsp-rest-api.php:68

POST/wp-json/mvsp/v1/scan/get-initial-infoincludes\class-mvsp-rest-api.php:74

POST/wp-json/mvsp/v1/scan/plugin/checksumincludes\class-mvsp-rest-api.php:80

POST/wp-json/mvsp/v1/get-db-configincludes\class-mvsp-rest-api.php:87

POST/wp-json/mvsp/v1/scan/theme/checksumincludes\class-mvsp-rest-api.php:93

POST/wp-json/mvsp/v1/create-files-zipincludes\class-mvsp-rest-api.php:100

POST/wp-json/mvsp/v1/delete-fileincludes\class-mvsp-rest-api.php:106

POST/wp-json/mvsp/v1/scan-uploadsincludes\class-mvsp-rest-api.php:112

POST/wp-json/mvsp/v1/start-migrateincludes\class-mvsp-rest-api.php:118

POST/wp-json/mvsp/v1/scan-dbincludes\class-mvsp-rest-api.php:124

POST/wp-json/mvsp/v1/upload-filesincludes\class-mvsp-rest-api.php:130

POST/wp-json/mvsp/v1/create-theme-zipsincludes\class-mvsp-rest-api.php:136

POST/wp-json/mvsp/v1/create-plugin-zipsincludes\class-mvsp-rest-api.php:142

POST/wp-json/mvsp/v1/create-mu-plugin-zipsincludes\class-mvsp-rest-api.php:149

POST/wp-json/mvsp/v1/verify/tokenincludes\class-mvsp-rest-api.php:155

POST/wp-json/mvsp/v1/disconnectincludes\class-mvsp-rest-api.php:161

POST/wp-json/mvsp/v1/checklistincludes\class-mvsp-rest-api.php:167

POST/wp-json/mvsp/v1/delete-deployment-scriptincludes\class-mvsp-rest-api.php:173

POST/wp-json/mvsp/v1/get-htaccessincludes\class-mvsp-rest-api.php:179

POST/wp-json/mvsp/v1/store-tokenincludes\class-mvsp-rest-api.php:185

POST/wp-json/mvsp/v1/update-pluginincludes\class-mvsp-rest-api.php:191

POST/wp-json/mvsp/v1/update-themeincludes\class-mvsp-rest-api.php:198

POST/wp-json/mvsp/v1/delete-pluginincludes\class-mvsp-rest-api.php:205

POST/wp-json/mvsp/v1/active-pluginincludes\class-mvsp-rest-api.php:212

POST/wp-json/mvsp/v1/deactive-pluginincludes\class-mvsp-rest-api.php:219

POST/wp-json/mvsp/v1/delete-themeincludes\class-mvsp-rest-api.php:227

POST/wp-json/mvsp/v1/active-themeincludes\class-mvsp-rest-api.php:234

POST/wp-json/mvsp/v1/plugins-listincludes\class-mvsp-rest-api.php:240

POST/wp-json/mvsp/v1/themes-listincludes\class-mvsp-rest-api.php:247

POST/wp-json/mvsp/v1/delete-filesincludes\class-mvsp-rest-api.php:254

POST/wp-json/mvsp/v1/technical-assessmentincludes\class-mvsp-rest-api.php:261

POST/wp-json/mvsp/v1/free-pluginsincludes\class-mvsp-rest-api.php:268

POST/wp-json/mvsp/v1/premium-pluginsincludes\class-mvsp-rest-api.php:275

POST/wp-json/mvsp/v1/free-themesincludes\class-mvsp-rest-api.php:282

POST/wp-json/mvsp/v1/premium-themesincludes\class-mvsp-rest-api.php:289

WordPress Hooks 8

actionplugins_loadedincludes\class-malware-virus-scanner-plugin.php:147

actionadmin_enqueue_scriptsincludes\class-malware-virus-scanner-plugin.php:162

actionadmin_enqueue_scriptsincludes\class-malware-virus-scanner-plugin.php:163

actionadmin_noticesincludes\class-malware-virus-scanner-plugin.php:167

actionwp_enqueue_scriptsincludes\class-malware-virus-scanner-plugin.php:186

actionwp_enqueue_scriptsincludes\class-malware-virus-scanner-plugin.php:187

actionadmin_menuincludes\class-mvsp-register-menu.php:15

actionrest_api_initincludes\class-mvsp-rest-api.php:30

Maintenance & Trust

Safe Ai Malware Protection for WP Maintenance & Trust

Maintenance Signals

WordPress version tested6.7.5

Last updatedFeb 22, 2025

PHP min version7.4

Downloads16K

Community Trust

Rating0/100

Number of ratings0

Active installs600

Alternatives

Safe Ai Malware Protection for WP Alternatives

MalCare WordPress Security Plugin – Malware Scanner, Cleaner, Security Firewall

malcare-security

100

Get Bulletproof Security for your WordPress site. WordPress security plugin packed with comprehensive Firewall, malware scanner, cleaner & more.

200K No CVEs

SecuPress with Simple SSL – Simple and Performant Security

secupress

Protect your WordPress with SecuPress, analyze and ensure the safety of your website daily.

40K 6 CVEs

Quttera ThreatSign – Web Malware Scanner for WordPress

quttera-web-malware-scanner

WordPress multi-level security scanner detecting malware, 0-day threats, brute-force attacks, bot attacks, and unauthorized admin changes.

10K 3 CVEs

WebDefender Security – Protection & AntiSpam

cwis-antivirus-malware-detected

100

PRO Security – Antivirus Scanner, 2-Layer Protection Hide Security, Brute Force Security & Antispam, Security Website and Security Hardening.

1K No CVEs

SiteLock Security – WP Hardening, Login Security & Malware Scans

sitelock

Free, lightweight WordPress security. Harden your site with login protection & 2FA, see Site Health clearly and run on-demand checks—setup in minutes.

1K 2 CVEs

Developer Profile

Safe Ai Malware Protection for WP Developer Profile

WP Messiah

12 plugins · 27K total installs

trust score

Avg Security Score

88/100

Avg Patch Time

129 days

View full developer profile

Detection Fingerprints

How We Detect Safe Ai Malware Protection for WP

Patterns used to identify this plugin on WordPress sites during automated security audits and web crawling.

Asset Fingerprints

Asset Paths

/wp-content/plugins/safe-ai-malware-protection-for-wp/css/jquery.toast.min.css/wp-content/plugins/safe-ai-malware-protection-for-wp/css/malware-virus-scanner-plugin-admin.css/wp-content/plugins/safe-ai-malware-protection-for-wp/js/jquery.toast.min.js/wp-content/plugins/safe-ai-malware-protection-for-wp/js/malware-virus-scanner-plugin-admin.js

Script Paths

js/jquery.toast.min.jsjs/malware-virus-scanner-plugin-admin.js

Version Parameters

malware-virus-scanner-plugin-admin?ver=jquery.toast.min?ver=

HTML / DOM Fingerprints

Data Attributes

data-mvsp-security-toggledata-mvsp-url

JS Globals

mvsp_object

FAQ

Safe Ai Malware Protection for WP Security & Risk Analysis

Is Safe Ai Malware Protection for WP Safe to Use in 2026?

Use With Caution

Key Concerns

Safe Ai Malware Protection for WP Security Vulnerabilities

CVEs by Year

Severity Breakdown

Safe Ai Malware Protection for WP Release Timeline

Safe Ai Malware Protection for WP Code Analysis

SQL Query Safety

Output Escaping

Safe Ai Malware Protection for WP Attack Surface

AJAX Handlers 4

REST API Routes 41

Safe Ai Malware Protection for WP Maintenance & Trust

Maintenance Signals

Community Trust

Safe Ai Malware Protection for WP Alternatives

MalCare WordPress Security Plugin – Malware Scanner, Cleaner, Security Firewall

SecuPress with Simple SSL – Simple and Performant Security

Quttera ThreatSign – Web Malware Scanner for WordPress

WebDefender Security – Protection & AntiSpam

SiteLock Security – WP Hardening, Login Security & Malware Scans

Safe Ai Malware Protection for WP Developer Profile

How We Detect Safe Ai Malware Protection for WP

Asset Fingerprints

HTML / DOM Fingerprints

Frequently Asked Questions about Safe Ai Malware Protection for WP