Does Sanitize DB have any unpatched vulnerabilities?

No. All known vulnerabilities in Sanitize DB have been patched as of the latest data update. Always keep the plugin updated to the latest version.

Is Sanitize DB compatible with WordPress 5.9.13?

According to WordPress.org data, Sanitize DB 1.0.1 has been tested up to WordPress 5.9.13. Check the plugin's changelog for the latest compatibility information.

How often is Sanitize DB updated?

Sanitize DB was last updated on Jul 23, 2022. Frequent updates are generally a positive security signal.

What is Sanitize DB's security score?

Sanitize DB has a WP-Safety security score of 85/100. This score is computed from CVE history, patch response time, developer trust signals, and plugin maintenance activity.

Sanitize DB Security & Risk Analysis

wordpress.org/plugins/sanitize-db

The plugin sanitizes the database by removing the unused meta entries and other unlinked records from the database. It removes unused data one by one …

0 active installs v1.0.1 PHP + WP 4.1+ Updated Jul 23, 2022

databaseoptimizationoptimizesanitizationsanitize

A · Safe

CVEs total0

Unpatched0

Last CVENever

Download

Safety Verdict

Is Sanitize DB Safe to Use in 2026?

Generally Safe

Score 85/100

Sanitize DB has no known CVEs and is actively maintained. It's a solid choice for most WordPress installations.

No known CVEs Updated 3yr ago

Risk Assessment

The "sanitize-db" v1.0.1 plugin exhibits a significant security concern due to a large unprotected attack surface. All six identified AJAX handlers lack authentication checks, meaning any user, including unauthenticated ones, could potentially trigger these functions. This is a critical vulnerability that greatly increases the plugin's exposure to exploitation. Furthermore, the plugin's handling of SQL queries and output escaping is concerning. The single SQL query is not using prepared statements, opening the door to SQL injection vulnerabilities. With only 20% of output properly escaped, there's a high risk of cross-site scripting (XSS) attacks through potentially unsanitized data being rendered in the browser. The absence of nonce checks on AJAX handlers exacerbates these risks, as it removes a fundamental layer of defense against cross-site request forgery (CSRF). The plugin's vulnerability history is clean, with no recorded CVEs, which is a positive sign. However, this does not negate the severe risks identified in the static analysis. The combination of an exposed attack surface and poor handling of database queries and output makes this plugin a high-risk component despite its clean history.

Key Concerns

Unprotected AJAX handlers
SQL queries without prepared statements
Low percentage of properly escaped output
Missing nonce checks on AJAX handlers
Bundled library (DataTables) - potential for outdated components

Vulnerabilities

None known

Sanitize DB Security Vulnerabilities

No known vulnerabilities — this is a good sign.

Code Analysis

Analyzed Mar 17, 2026

Sanitize DB Code Analysis

Dangerous Functions

Raw SQL Queries

0 prepared

Unescaped Output

2 escaped

Nonce Checks

Capability Checks

File Operations

External Requests

Bundled Libraries

DataTables

SQL Query Safety

0% prepared1 total queries

Output Escaping

20% escaped10 total outputs

Attack Surface

6 unprotected

Sanitize DB Attack Surface

Entry Points6

Unprotected6

AJAX Handlers 6

noprivwp_ajax_wpsdb_scan_nowinc\functions.php:37

authwp_ajax_wpsdb_scan_nowinc\functions.php:38

noprivwp_ajax_wpsdb_remove_scan_historyinc\functions.php:81

authwp_ajax_wpsdb_remove_scan_historyinc\functions.php:82

noprivwp_ajax_wpsdb_save_scan_timeinc\functions.php:110

authwp_ajax_wpsdb_save_scan_timeinc\functions.php:111

WordPress Hooks 3

actionadmin_menuadmin\admin.php:5

actioninitcpt\wpsdb_history.php:20

actioninitinc\functions.php:34

Maintenance & Trust

Sanitize DB Maintenance & Trust

Maintenance Signals

WordPress version tested5.9.13

Last updatedJul 23, 2022

PHP min version

Downloads1K

Community Trust

Rating0/100

Number of ratings0

Active installs0

Alternatives

Sanitize DB Alternatives

NHR Advanced Options Table Manager & Autoload Optimizer

nhrrob-options-table-manager

Optimize WordPress with Advanced Option History, Autoload Health Checks, and Automated Cleanup. Boost performance by reducing database bloat.

100 1 CVE

Imagify Image Optimization – Optimize Images | Compress Images | Convert WebP | Convert AVIF

imagify

100

Optimize images in 1-click: compress images, convert to WebP & AVIF, resize, and boost your site with the easiest WordPress image optimization plugin!

1.0M No CVEs

Smush Image Optimization – Optimize Images | Compress & Lazy Load Images | Convert WebP & AVIF | Image CDN

wp-smushit

Optimize and compress images with lossless and lossy compression, lazy load, WebP & AVIF conversion, and global image CDN.

1.0M 6 CVEs

Converter for Media – Optimize images | Convert WebP & AVIF

webp-converter-for-media

Speed up your website by using our WebP & AVIF Converter. Optimize images and serve WebP and AVIF images instead of standard formats!

500K 4 CVEs

ShortPixel Image Optimizer – Optimize Images, Convert WebP & AVIF

shortpixel-image-optimiser

Optimize images & PDFs smartly. Create and compress next-gen WebP and AVIF formats. Smart crop and resize.

300K 7 CVEs

Developer Profile

Sanitize DB Developer Profile

anku1991

2 plugins · 10 total installs

trust score

Avg Security Score

85/100

Avg Patch Time

30 days

View full developer profile

Detection Fingerprints

How We Detect Sanitize DB

Patterns used to identify this plugin on WordPress sites during automated security audits and web crawling.

Asset Fingerprints

Asset Paths

/wp-content/plugins/sanitize-db/assets/dataTables/jquery.dataTables.min.js/wp-content/plugins/sanitize-db/assets/dataTables/jquery.dataTables.min.css/wp-content/plugins/sanitize-db/assets/loading-bar/loading-bar.min.js/wp-content/plugins/sanitize-db/assets/js/script.js/wp-content/plugins/sanitize-db/assets/loading-bar/loading-bar.css/wp-content/plugins/sanitize-db/assets/css/style.css/wp-content/plugins/sanitize-db/assets/img/logo.png

Script Paths

/wp-content/plugins/sanitize-db/assets/dataTables/jquery.dataTables.min.js/wp-content/plugins/sanitize-db/assets/loading-bar/loading-bar.min.js/wp-content/plugins/sanitize-db/assets/js/script.js

Version Parameters

sanitize-db/assets/dataTables/jquery.dataTables.min.js?ver=sanitize-db/assets/dataTables/jquery.dataTables.min.css?ver=sanitize-db/assets/loading-bar/loading-bar.min.js?ver=sanitize-db/assets/js/script.js?ver=sanitize-db/assets/loading-bar/loading-bar.css?ver=sanitize-db/assets/css/style.css?ver=

HTML / DOM Fingerprints

CSS Classes

wpsdb-header-logoldBarlabel-center

Data Attributes

id="wpsdb-header"id="wpsdb-wrap"id="wpsdb-content"id="sacn_now"id="circle_progress"id="ldBar"+1 more

JS Globals

WPSDB_PLUGIN_URL

REST Endpoints

/wp-json/wp/v2/wpsdb_history

FAQ