DR SARA COVID Security & Risk Analysis
wordpress.org/plugins/sara-covidThe main propose of this plugin is to view COVID-19 case statistics in worldwide. you can easily install the plugin and use the shortcode to view the …
Is DR SARA COVID Safe to Use in 2026?
Generally Safe
Score 100/100DR SARA COVID has no known CVEs and is actively maintained. It's a solid choice for most WordPress installations.
The "sara-covid" plugin v1.4 exhibits a generally good security posture based on the provided static analysis. The code demonstrates strong adherence to secure coding practices, with a high percentage of properly escaped output and 100% of SQL queries utilizing prepared statements. The absence of dangerous functions, file operations, and known vulnerabilities in its history are positive indicators. However, there are a few areas that warrant attention. The presence of external HTTP requests without explicit mention of security controls or validation could potentially introduce risks if the external endpoints are compromised or manipulated. Furthermore, the lack of nonce checks and capability checks on the identified entry points (shortcodes) represents a potential weakness, as it could allow for unauthorized execution of plugin functionality if these shortcodes are accessible and exploitable in certain contexts. While the attack surface is small, these checks are fundamental for robust security. Overall, the plugin is well-constructed, but the absence of essential security checks on its entry points and the nature of external HTTP requests prevent it from achieving a perfect security score.
Key Concerns
- Shortcodes lack nonce checks
- Shortcodes lack capability checks
- External HTTP requests found
DR SARA COVID Security Vulnerabilities
DR SARA COVID Release Timeline
DR SARA COVID Code Analysis
Output Escaping
DR SARA COVID Attack Surface
Shortcodes 2
WordPress Hooks 22
Maintenance & Trust
DR SARA COVID Maintenance & Trust
Maintenance Signals
Community Trust
DR SARA COVID Alternatives
Corona Virus Data
corona-virus-data
This plugin displays the Coronavirus case data through shortcodes [cov2019] [cov2019all] or [cov2019map] in your WordPress post or page.
Simple Website Banner
corona-virus-covid-19-banner
This is a very simple plugin with a sole purpose of allowing you to inform your visitors of an upcoming event, updated store hours, or other important …
South African COVID19 Banner
corona-virus-covid19-banner
Comply with new South African Covid-19 regulations requiring all websites ending in .ZA to show a link to the official government page.
COVID-19 Float Button
covid-19-float-button
Creates a floating button with a link to a read more page.
VirusWeather Covid-19 Coronavirus
virusweather
Personalized by IP address PNG banner shows local covid-19 A.I. calculated threat level and live coronavirus stats for 10000+ local areas world-wide
DR SARA COVID Developer Profile
5 plugins · 20 total installs
How We Detect DR SARA COVID
Patterns used to identify this plugin on WordPress sites during automated security audits and web crawling.
Asset Fingerprints
/wp-content/plugins/sara-covid/assets/css/style.css/wp-content/plugins/sara-covid/assets/js/main.js/wp-content/plugins/sara-covid/assets/js/main.jssara-covid/style.css?ver=sara-covid/main.js?ver=HTML / DOM Fingerprints
sara-covid-containercovid-tablecountry-data-rowchart-container<!-- SARA COVID Plugin --><!-- End SARA COVID Plugin --><!-- SARA COVID Chart --><!-- End SARA COVID Chart -->+2 moredata-plugin="sara-covid"data-countrydata-casesdata-deathsdata-recovereddata-activewindow.saraCovidDatavar saraCovidData/wp-json/sara-covid/v1/data[sara_covid_stats][sara_covid_chart][sara_covid_country]