Does System Info have any unpatched vulnerabilities?

No. All known vulnerabilities in System Info have been patched as of the latest data update. Always keep the plugin updated to the latest version.

Is System Info compatible with WordPress 6.6.5?

According to WordPress.org data, System Info 0.1.12 has been tested up to WordPress 6.6.5. Check the plugin's changelog for the latest compatibility information.

Is System Info compatible with PHP 7.3.5+?

System Info requires PHP 7.3.5 or higher. Most modern WordPress hosts run PHP 8.1 or 8.2. If you are on an older PHP version, consider upgrading before installing this plugin.

How often is System Info updated?

System Info was last updated on Nov 8, 2024. Frequent updates are generally a positive security signal.

What is System Info's security score?

System Info has a WP-Safety security score of 92/100. This score is computed from CVE history, patch response time, developer trust signals, and plugin maintenance activity.

System Info Security & Risk Analysis

wordpress.org/plugins/system-info

The System Info plugin generates a composer.json file and provides system information based on the active plugins and theme in your WordPress installa …

10 active installs v0.1.12 PHP 7.3.5+ WP 5.3.0+ Updated Nov 8, 2024

infosystemtools

A · Safe

CVEs total0

Unpatched0

Last CVENever

Plugin page Download

Safety Verdict

Is System Info Safe to Use in 2026?

Generally Safe

Score 92/100

System Info has no known CVEs and is actively maintained. It's a solid choice for most WordPress installations.

No known CVEs Updated 1yr ago

Risk Assessment

The "system-info" plugin version 0.1.12 exhibits a strong security posture based on the provided static analysis. The complete absence of an attack surface, including AJAX handlers, REST API routes, shortcodes, and cron events, significantly reduces the potential for external exploitation. Furthermore, the code demonstrates good practices with a high percentage of properly escaped outputs, the presence of nonce checks, and capability checks for its limited entry points. The lack of file operations and external HTTP requests further limits potential attack vectors.

While the static analysis reveals no critical or high-severity issues, including taint flows and dangerous functions, there is a minor concern regarding SQL queries. Fifty percent of the four SQL queries are not using prepared statements, which could potentially introduce SQL injection vulnerabilities if the data used in these queries is not properly sanitized before insertion. The vulnerability history is exceptionally clean, with no recorded CVEs, which suggests a history of secure development or a lack of widespread testing and exploitation of past versions. Overall, this plugin appears to be developed with security in mind, but the use of raw SQL queries warrants attention to ensure data sanitization is robust.

Key Concerns

SQL queries not using prepared statements

Vulnerabilities

None known

System Info Security Vulnerabilities

No known vulnerabilities — this is a good sign.

Code Analysis

Analyzed Mar 16, 2026

System Info Code Analysis

Dangerous Functions

Raw SQL Queries

2 prepared

Unescaped Output

55 escaped

Nonce Checks

Capability Checks

File Operations

External Requests

Bundled Libraries

SQL Query Safety

50% prepared4 total queries

Output Escaping

95% escaped58 total outputs

Attack Surface

System Info Attack Surface

Entry Points0

Unprotected0

WordPress Hooks 5

actionadmin_menusrc\SystemInfo\Plugin.php:22

actionadmin_bar_menusrc\SystemInfo\Updates.php:24

actioninitsrc\SystemInfo\Updates.php:25

actionadmin_bar_updates_indicator_cronsrc\SystemInfo\Updates.php:26

actionadmin_menusrc\SystemInfo\Updates.php:27

Maintenance & Trust

System Info Maintenance & Trust

Maintenance Signals

WordPress version tested6.6.5

Last updatedNov 8, 2024

PHP min version7.3.5

Downloads1K

Community Trust

Rating0/100

Number of ratings0

Active installs10

Alternatives

System Info Alternatives

WP Developer's Toolbox

wp-developers-toolbox

"Great for turning DEBUG mode on and off - quickly!" * Hide or show error notifications - globally or conditionally!

10 No CVEs

Version Info – Server Health Monitor, PHP & MySQL Version Display, Environment Indicators

version-info

100

The #1 technical dashboard for WordPress professionals. Display PHP, MySQL, WP & server versions anywhere in admin. Monitor CPU, RAM, DB size &amp …

10K No CVEs

System Dashboard

system-dashboard

Central dashboard to monitor various WordPress components, processes and data, including the server.

1K 11 CVEs

WP System Information

wp-system-info

Show WordPress Site, Current Theme, active plugin and server related information, php info, file & folder persmission at a glance.

800 1 unpatched

atec System Info

atec-system-info

100

atec System Info (Operating system, server, memory, PHP and database details)

200 No CVEs

Developer Profile

System Info Developer Profile

uri

15 plugins · 1K total installs

trust score

Avg Security Score

91/100

Avg Patch Time

30 days

View full developer profile

Detection Fingerprints

How We Detect System Info

Patterns used to identify this plugin on WordPress sites during automated security audits and web crawling.

Asset Fingerprints

HTML / DOM Fingerprints

CSS Classes

update-summaryupdate-detailsplugin-updates-listtheme-updates-list

Data Attributes

readonly

Shortcode Output

<h2>System Info Generator</h2><h2>Generated composer.json ( Exact Version )</h2><h2>Generated composer.json ( Caret Version Range )</h2><h2>System Info</h2>

FAQ