Does Spider Analyser – WordPress搜索引擎蜘蛛分析插件 have any unpatched vulnerabilities?

No. All known vulnerabilities in Spider Analyser – WordPress搜索引擎蜘蛛分析插件 have been patched as of the latest data update. Always keep the plugin updated to the latest version.

Is Spider Analyser – WordPress搜索引擎蜘蛛分析插件 compatible with WordPress 6.8.5?

According to WordPress.org data, Spider Analyser – WordPress搜索引擎蜘蛛分析插件 2.1.3 has been tested up to WordPress 6.8.5. Check the plugin's changelog for the latest compatibility information.

Is Spider Analyser – WordPress搜索引擎蜘蛛分析插件 compatible with PHP 7.0+?

Spider Analyser – WordPress搜索引擎蜘蛛分析插件 requires PHP 7.0 or higher. Most modern WordPress hosts run PHP 8.1 or 8.2. If you are on an older PHP version, consider upgrading before installing this plugin.

How often is Spider Analyser – WordPress搜索引擎蜘蛛分析插件 updated?

Spider Analyser – WordPress搜索引擎蜘蛛分析插件 was last updated on Jun 9, 2025. Frequent updates are generally a positive security signal.

What is Spider Analyser – WordPress搜索引擎蜘蛛分析插件's security score?

Spider Analyser – WordPress搜索引擎蜘蛛分析插件 has a WP-Safety security score of 100/100. This score is computed from CVE history, patch response time, developer trust signals, and plugin maintenance activity.

Spider Analyser – WordPress搜索引擎蜘蛛分析插件 Security & Risk Analysis

wordpress.org/plugins/spider-analyser

Spider Analyser是一款用于跟踪WordPress网站各种搜索引擎蜘蛛爬行日志的插件，并进行详细的蜘蛛爬行数据统计、蜘蛛行为分析、蜘蛛爬取分析及伪蜘蛛拦截等。

4K active installs v2.1.3 PHP 7.0+ WP 5.6+ Updated Jun 9, 2025

baiduspiderbingbotcrawlergooglebotspider

A · Safe

CVEs total0

Unpatched0

Last CVENever

Plugin page Download

Safety Verdict

Is Spider Analyser – WordPress搜索引擎蜘蛛分析插件 Safe to Use in 2026?

Generally Safe

Score 100/100

Spider Analyser – WordPress搜索引擎蜘蛛分析插件 has no known CVEs and is actively maintained. It's a solid choice for most WordPress installations.

No known CVEs Updated 9mo ago

Risk Assessment

The spider-analyser v2.1.3 plugin exhibits a generally strong security posture, with a commendable emphasis on secure coding practices. The static analysis reveals a low attack surface, with all identified entry points (AJAX handlers) protected by authentication checks. The high percentage of prepared statements for SQL queries and proper output escaping further reinforce this positive assessment. The plugin also demonstrates good security awareness by including a nonce check and multiple capability checks on its functionalities.

However, the taint analysis highlights a single flow with an unsanitized path, which is categorized as high severity. While the plugin has no recorded vulnerabilities or CVEs, indicating a good historical security record, this single taint flow represents a potential entry point for exploitation if not properly handled. The presence of file operations and external HTTP requests, though not inherently insecure, warrants attention in conjunction with the identified taint flow.

In conclusion, spider-analyser v2.1.3 is largely well-secured. The absence of historical vulnerabilities is a significant strength. The primary concern arises from the high-severity taint flow, which indicates a specific area for immediate review and remediation to maintain its strong security profile. Addressing this single taint flow would significantly bolster the plugin's overall security.

Key Concerns

High severity taint flow with unsanitized path

Vulnerabilities

None known

Spider Analyser – WordPress搜索引擎蜘蛛分析插件 Security Vulnerabilities

No known vulnerabilities — this is a good sign.

Code Analysis

Analyzed Mar 16, 2026

Spider Analyser – WordPress搜索引擎蜘蛛分析插件 Code Analysis

Dangerous Functions

Raw SQL Queries

106 prepared

Unescaped Output

71 escaped

Nonce Checks

Capability Checks

File Operations

External Requests

Bundled Libraries

SQL Query Safety

65% prepared163 total queries

Output Escaping

92% escaped77 total outputs

Data Flows

1 unsanitized

Data Flow Analysis

2 flows1 with unsanitized paths

<spider.class> (classes\spider.class.php:0)

Source (user input) Sink (dangerous op) Sanitizer Transform Unsanitized Sanitized

Attack Surface

Spider Analyser – WordPress搜索引擎蜘蛛分析插件 Attack Surface

Entry Points2

Unprotected0

AJAX Handlers 2

authwp_ajax_spider_analyserclasses\spider.class.php:71

authwp_ajax_spider_analyserclasses\spider.class.php:72

WordPress Hooks 12

filterplugin_row_metaclasses\admin.class.php:62

actionplugins_loadedclasses\spider.class.php:21

filterall_pluginsclasses\spider.class.php:26

actionparse_requestclasses\spider.class.php:41

actionadmin_menuclasses\spider.class.php:43

actionedit_postclasses\spider.class.php:44

filterplugin_action_linksclasses\spider.class.php:45

filterredirect_canonicalclasses\spider.class.php:48

actionwp_wb_spider_analyser_cronclasses\spider.class.php:58

actionadmin_enqueue_scriptsclasses\spider.class.php:74

actionadmin_noticesclasses\spider.class.php:75

filterscript_loader_tagclasses\spider.class.php:213

Scheduled Events 1

wp_wb_spider_analyser_cron

Maintenance & Trust

Spider Analyser – WordPress搜索引擎蜘蛛分析插件 Maintenance & Trust

Maintenance Signals

WordPress version tested6.8.5

Last updatedJun 9, 2025

PHP min version7.0

Downloads128K

Community Trust

Rating100/100

Number of ratings1

Active installs4K

Alternatives

Spider Analyser – WordPress搜索引擎蜘蛛分析插件 Alternatives

Robots Meta Whiz

robotswhiz

Easy way to discourage search engines from indexing only specific pages / posts with custom meta tags.

100 No CVEs

Crawler Record

crawler-record

100

Crawler Record tells you the last time each of the most common search/chat bots visited (Google, ChatGPT, etc)- and the pages at which they looked.

50 No CVEs

Get User-Agents

get-user-agents

WordPress plugin tracks User Agents, avoiding server log analysis. Records and exports data easily for further analysis.

40 No CVEs

LJPL Armored robots.txt

ljpl-armored-robotstxt

Add some directives to your robots.txt file to keep your site safer

10 No CVEs

Robots.txt Extender

robots-txt-extender

Dynamic robots.txt for Multisite! Change parameters, or don't, for each site of your network without losing the defaults from WordPress Includes.

10 No CVEs

Developer Profile

Spider Analyser – WordPress搜索引擎蜘蛛分析插件 Developer Profile

wbolt.com

11 plugins · 17K total installs

trust score

Avg Security Score

95/100

Avg Patch Time

202 days

View full developer profile

Detection Fingerprints

How We Detect Spider Analyser – WordPress搜索引擎蜘蛛分析插件

Patterns used to identify this plugin on WordPress sites during automated security audits and web crawling.

Asset Fingerprints

Asset Paths

/wp-content/plugins/spider-analyser/wbpc/index.js/wp-content/plugins/spider-analyser/assets/css/index.css/wp-content/plugins/spider-analyser/assets/js/main.js/wp-content/plugins/spider-analyser/assets/js/pages/spider-analyser/index.js/wp-content/plugins/spider-analyser/assets/js/pages/spider-analyser/spider-list.js/wp-content/plugins/spider-analyser/assets/js/pages/spider-analyser/spider-config.js/wp-content/plugins/spider-analyser/assets/js/pages/spider-analyser/spider-detail.js

Script Paths

/wp-content/plugins/spider-analyser/wbpc/index.js/wp-content/plugins/spider-analyser/assets/js/main.js/wp-content/plugins/spider-analyser/assets/js/pages/spider-analyser/index.js/wp-content/plugins/spider-analyser/assets/js/pages/spider-analyser/spider-list.js/wp-content/plugins/spider-analyser/assets/js/pages/spider-analyser/spider-config.js/wp-content/plugins/spider-analyser/assets/js/pages/spider-analyser/spider-detail.js

Version Parameters

spider-analyser/style.css?ver=spider-analyser/script.js?ver=

HTML / DOM Fingerprints

CSS Classes

spider-analyser-wrapspider-analyser-sidebarspider-analyser-content

HTML Comments

Data Attributes

data-spider-analyser-iddata-spider-analyser-action

JS Globals

window.spiderAnalyserSettingsvar spiderAnalyserData

REST Endpoints

/wp-json/spider-analyser/v1/data/wp-json/spider-analyser/v1/settings

Shortcode Output

[spider_analyser_report][spider_analyser_dashboard]

FAQ