Does Tavakal – Disk monitoring have any unpatched vulnerabilities?

No. All known vulnerabilities in Tavakal – Disk monitoring have been patched as of the latest data update. Always keep the plugin updated to the latest version.

Is Tavakal – Disk monitoring compatible with WordPress 5.9.13?

According to WordPress.org data, Tavakal – Disk monitoring 1.0.0 has been tested up to WordPress 5.9.13. Check the plugin's changelog for the latest compatibility information.

Is Tavakal – Disk monitoring compatible with PHP 5.6+?

Tavakal – Disk monitoring requires PHP 5.6 or higher. Most modern WordPress hosts run PHP 8.1 or 8.2. If you are on an older PHP version, consider upgrading before installing this plugin.

How often is Tavakal – Disk monitoring updated?

Tavakal – Disk monitoring was last updated on Feb 12, 2022. Frequent updates are generally a positive security signal.

What is Tavakal – Disk monitoring's security score?

Tavakal – Disk monitoring has a WP-Safety security score of 85/100. This score is computed from CVE history, patch response time, developer trust signals, and plugin maintenance activity.

Tavakal – Disk monitoring Security & Risk Analysis

wordpress.org/plugins/tavakal-disk-monitoring

Free light plugin to monitor the free disk space, and notification system when running out of space.

0 active installs v1.0.0 PHP 5.6+ WP 4.0+ Updated Feb 12, 2022

alarmcheck-free-spacediskfree-space

A · Safe

CVEs total0

Unpatched0

Last CVENever

Download

Safety Verdict

Is Tavakal – Disk monitoring Safe to Use in 2026?

Generally Safe

Score 85/100

Tavakal – Disk monitoring has no known CVEs and is actively maintained. It's a solid choice for most WordPress installations.

No known CVEs Updated 4yr ago

Risk Assessment

The tavakal-disk-monitoring plugin v1.0.0 exhibits a generally good security posture based on the provided static analysis. There are no identified dangerous functions, all SQL queries utilize prepared statements, and all output is properly escaped. Furthermore, the plugin does not perform file operations or external HTTP requests, and the taint analysis shows no concerning flows. The absence of any recorded vulnerabilities in its history is also a positive indicator.

However, a significant concern arises from the complete lack of capability checks and nonce checks across all entry points. While the attack surface appears limited with no directly exposed AJAX handlers, REST API routes, or shortcodes without authentication, the single cron event is not explicitly protected by capability checks. This means that an attacker could potentially trigger the cron event without proper authorization, which could lead to unintended consequences depending on its functionality.

In conclusion, while the plugin demonstrates strong coding practices in several key areas, the lack of robust access control, particularly for the cron event, presents a notable weakness. The absence of historical vulnerabilities is encouraging, but it does not negate the risks associated with the current lack of proper authorization checks. Future versions should prioritize implementing capability checks for all actions, especially scheduled tasks.

Key Concerns

Missing capability checks on cron events
Missing nonce checks on AJAX handlers
Missing permission callbacks on REST API routes

Vulnerabilities

None known

Tavakal – Disk monitoring Security Vulnerabilities

No known vulnerabilities — this is a good sign.

Code Analysis

Analyzed Mar 17, 2026

Tavakal – Disk monitoring Code Analysis

Dangerous Functions

Raw SQL Queries

0 prepared

Unescaped Output

11 escaped

Nonce Checks

Capability Checks

File Operations

External Requests

Bundled Libraries

Output Escaping

100% escaped11 total outputs

Attack Surface

Tavakal – Disk monitoring Attack Surface

Entry Points0

Unprotected0

WordPress Hooks 6

actionadmin_initincludes\DiskMonitoring.php:21

filtercron_schedulesincludes\DiskMonitoring.php:23

actionwp_dashboard_setupincludes\DiskMonitoring.php:25

actioncheck_disk_spaceincludes\DiskMonitoring.php:27

actionupdate_option_tavakal_disk_monitoring_send_notification_toincludes\DiskMonitoring.php:33

actionupdate_option_tavakal_alert_at_sizeincludes\DiskMonitoring.php:34

Scheduled Events 1

check_disk_space

Maintenance & Trust

Tavakal – Disk monitoring Maintenance & Trust

Maintenance Signals

WordPress version tested5.9.13

Last updatedFeb 12, 2022

PHP min version5.6

Downloads716

Community Trust

Rating0/100

Number of ratings0

Active installs0

Alternatives

Tavakal – Disk monitoring Alternatives

Disk Usage Sunburst

disk-usage-sunburst

100

Visualize and drill down the disk usage of your whole WordPress installation. Find and identify big files immediately!

9K No CVEs

My Simple Space

my-simple-space

Disk Space, Database and Memory Usage in the dashboard.

8K No CVEs

Disk Usage Insights

disk-usage-insights

100

Find large files and folders in no time! Hunt down the TOP 10 files and folders with the most disk usage.

1K No CVEs

Cron Setup and Monitor – Get URL Cron

get-url-cron

Manage cron jobs, monitor tasks, retry failures, and send email updates

1K 2 CVEs

MyServerInfo – Memory Usage, PHP Version, Memory Limit, Execution Time, CPU Usage, Disk Usage

my-server-info

100

Displays Usage (CPU , Disk, Memory), PHP and MySQL Version, WP Memory Limit, PHP Execution Time, Max Input Vars, IP Address, Uptime, Timezone.

700 No CVEs

Developer Profile

Tavakal – Disk monitoring Developer Profile

tavakal4devs

2 plugins · 0 total installs

trust score

Avg Security Score

85/100

Avg Patch Time

30 days

View full developer profile

Detection Fingerprints

How We Detect Tavakal – Disk monitoring

Patterns used to identify this plugin on WordPress sites during automated security audits and web crawling.

Asset Fingerprints

Version Parameters

tavakal-disk-monitoring/style.css?ver=tavakal-disk-monitoring/script.js?ver=

HTML / DOM Fingerprints

FAQ