Does SeraphConsulting monitor have any unpatched vulnerabilities?

No published vulnerabilities and no findings under coordinated disclosure as of the latest data update. Always keep the plugin updated to the latest version.

Is SeraphConsulting monitor compatible with WordPress 5.6.17?

According to WordPress.org data, SeraphConsulting monitor 1.0.4 has been tested up to WordPress 5.6.17. Check the plugin's changelog for the latest compatibility information.

How often is SeraphConsulting monitor updated?

SeraphConsulting monitor was last updated on Dec 28, 2020. Frequent updates are generally a positive security signal.

What is SeraphConsulting monitor's security score?

SeraphConsulting monitor has a WP-Safety security score of 85/100. This score is computed from CVE history, patch response time, developer trust signals, and plugin maintenance activity.

SeraphConsulting monitor Security & Risk Analysis

wordpress.org/plugins/seraphconsulting-monitor

Simple plugin to show wp and installed plugins info

10 active installs v1.0.4 PHP + WP 5.6+ Updated Dec 28, 2020

apiinfomonitor

A · Safe

CVEs total0

Unpatched0

Last CVENever

Plugin page Download

Safety Verdict

Is SeraphConsulting monitor Safe to Use in 2026?

Generally Safe

Score 85/100

SeraphConsulting monitor has no known CVEs and is actively maintained. It's a solid choice for most WordPress installations.

No known CVEs Updated 5yr ago

Risk Assessment

The seraphconsulting-monitor plugin v1.0.4 exhibits several significant security concerns despite a lack of recorded historical vulnerabilities and the absence of dangerous functions or raw SQL queries. The primary weakness lies in its unprotected entry points, specifically two REST API routes that lack permission callbacks. This means any unauthenticated user could potentially interact with these API endpoints, leading to an exposed attack surface. Furthermore, the plugin demonstrates poor output escaping practices, with only 25% of detected outputs being properly escaped. This suggests a high risk of Cross-Site Scripting (XSS) vulnerabilities if user-supplied data is incorporated into these unescaped outputs. While the plugin's SQL query handling and lack of file operations are positive security indicators, the unprotected REST API routes and insufficient output escaping present immediate and serious risks that require immediate attention.

Key Concerns

REST API routes without permission callbacks
Unescaped output detected

Vulnerabilities

None known

SeraphConsulting monitor Security Vulnerabilities

No known vulnerabilities — this is a good sign.

Version History

SeraphConsulting monitor Release Timeline

v1.0.4Current

v1.0.3

v1.0.2

v1.0.1

v1.0.0

Code Analysis

Analyzed Mar 17, 2026

SeraphConsulting monitor Code Analysis

Dangerous Functions

Raw SQL Queries

0 prepared

Unescaped Output

1 escaped

Nonce Checks

Capability Checks

File Operations

External Requests

Bundled Libraries

Output Escaping

25% escaped4 total outputs

Attack Surface

2 unprotected

SeraphConsulting monitor Attack Surface

Entry Points2

Unprotected2

REST API Routes 2

GET/wp-json/seraph-monitor/v1/info/inc\endpoints.class.php:79

GET/wp-json/seraph-monitor/v1/info/(?P<apiKey>\d+)inc\endpoints.class.php:84

WordPress Hooks 4

filterplugin_action_links_seraphconsulting-monitor/seraph-monitor.phpinc\endpoints.class.php:9

actionadmin_initinc\endpoints.class.php:32

actionadmin_menuinc\endpoints.class.php:35

actionrest_api_initinc\endpoints.class.php:77

Maintenance & Trust

SeraphConsulting monitor Maintenance & Trust

Maintenance Signals

WordPress version tested5.6.17

Last updatedDec 28, 2020

PHP min version

Downloads1K

Community Trust

Rating0/100

Number of ratings0

Active installs10

Alternatives

SeraphConsulting monitor Alternatives

Health Endpoint

health-endpoint

Creates a /health endpoint that returns a 200 OK HTTP status code while WordPress is performing correctly.

3K No CVEs

System Dashboard

system-dashboard

Central dashboard to monitor various WordPress components, processes and data, including the server.

1K 11 CVEs

ServerMonitor

servermonitor

A simple plugin to view server resource usage (ram, cpu, disk), check your PHP error log, and more.

100 No CVEs

Relay

relay

100

A bridge between your WordPress site’s internals and your monitoring tools.

80 No CVEs

InfoMon – System Info & Server Monitor

infomon

100

InfoMon shows WordPress, PHP, database and server details in a clean admin page and a compact dashboard widget, with handy JSON export.

50 No CVEs

Developer Profile

SeraphConsulting monitor Developer Profile

smilight

1 plugin · 10 total installs

trust score

Avg Security Score

85/100

Avg Patch Time

30 days

View full developer profile

Detection Fingerprints

How We Detect SeraphConsulting monitor

Patterns used to identify this plugin on WordPress sites during automated security audits and web crawling.

Asset Fingerprints

Version Parameters

seraphconsulting-monitor/seraph-monitor.php?ver=

HTML / DOM Fingerprints

Data Attributes

for="seraph_monitor_api_key"name="seraph_monitor_api_key"id="seraph_monitor_api_key"for="seraph_monitor_backups_dir"name="seraph_monitor_backups_dir"id="seraph_monitor_backups_dir"

REST Endpoints

/seraph-monitor/v1/info//seraph-monitor/v1/info/(?P<apiKey>\d+)

Shortcode Output

<small>Please enter API key to secure access to your website data. Or copy/paste this key: <small>Please enter where your backups directory located.</small>

FAQ