Does Ultima Ads for Publishers have any unpatched vulnerabilities?

No published vulnerabilities and no findings under coordinated disclosure as of the latest data update. Always keep the plugin updated to the latest version.

Is Ultima Ads for Publishers compatible with WordPress 6.9.4?

According to WordPress.org data, Ultima Ads for Publishers 1.0.0 has been tested up to WordPress 6.9.4. Check the plugin's changelog for the latest compatibility information.

How often is Ultima Ads for Publishers updated?

Ultima Ads for Publishers was last updated on Apr 2, 2026. Frequent updates are generally a positive security signal.

What is Ultima Ads for Publishers's security score?

Ultima Ads for Publishers has a WP-Safety security score of 100/100. This score is computed from CVE history, patch response time, developer trust signals, and plugin maintenance activity.

Ultima Ads for Publishers Security — No Known CVEs

Safety Verdict

Is Ultima Ads for Publishers Safe to Use in 2026?

Generally Safe

Score 100/100

Ultima Ads for Publishers has no known CVEs and is actively maintained. It's a solid choice for most WordPress installations.

No known CVEs Updated 1mo ago

Risk Assessment

The "ultima-publishers" v1.0.1 plugin exhibits a generally strong security posture with several positive indicators. The code appears to be written with security best practices in mind, evidenced by 100% proper output escaping and 100% usage of prepared statements for SQL queries. The presence of 23 nonce checks and 26 capability checks suggests a good effort to protect against common WordPress vulnerabilities. Furthermore, the complete absence of any recorded CVEs, past or present, is a significant strength, indicating a history of stable and likely secure code.

However, the plugin is not without its concerns. The static analysis identified 16 AJAX handlers, with one of them lacking authentication checks. This represents a potential entry point for unauthorized actions if exploited. While no critical or high severity taint flows were found, the presence of 3 flows with unsanitized paths warrants attention, as these could potentially lead to vulnerabilities if user-supplied data is not handled carefully, even if they didn't reach a critical severity in this analysis.

In conclusion, "ultima-publishers" v1.0.1 is largely well-secured, with a strong emphasis on input validation and output sanitization. Its clean vulnerability history is a testament to its robustness. The primary area of concern is the single AJAX handler without an authentication check, which presents a direct risk. The unsanitized paths in taint analysis, while not critical, also require careful monitoring. Overall, the plugin is in good shape, but the identified unprotected AJAX handler is a specific area that should be addressed to improve its security.

Key Concerns

AJAX handler without auth checks
Flows with unsanitized paths (3)

Vulnerabilities

None known

Ultima Ads for Publishers Security Vulnerabilities

No known vulnerabilities — this is a good sign.

Version History

Ultima Ads for Publishers Release Timeline

v1.0.0Current

Code Analysis

Analyzed Apr 16, 2026

Ultima Ads for Publishers Code Analysis

Dangerous Functions

0

Raw SQL Queries

0

4 prepared

Unescaped Output

0

724 escaped

Nonce Checks

23

Capability Checks

26

File Operations

1

External Requests

3

Bundled Libraries

0

SQL Query Safety

100% prepared4 total queries

Output Escaping

100% escaped724 total outputs

Data Flows · Security

3 unsanitized

Data Flow Analysis

17 flows3 with unsanitized paths

preciso_ultima_tc (includes/pages/SignupPage.php:16)

Source (user input) Sink (dangerous op) Sanitizer Transform Unsanitized Sanitized

Attack Surface

1 unprotected

Ultima Ads for Publishers Attack Surface

Entry Points20

Unprotected1

AJAX Handlers 16

authwp_ajax_preciso_ultima_add_script_headerincludes/add-script-header.php:115

authwp_ajax_preciso_create_ad_slotincludes/class-ajax.php:14

authwp_ajax_preciso_add_master_script_to_headerincludes/class-ajax.php:16

authwp_ajax_preciso_debug_pingincludes/class-ajax.php:18

noprivwp_ajax_preciso_forgot_passwordincludes/class-ajax.php:19

authwp_ajax_preciso_forgot_passwordincludes/class-ajax.php:20

noprivwp_ajax_preciso_ultima_forgot_passwordincludes/class-ajax.php:22

authwp_ajax_preciso_ultima_forgot_passwordincludes/class-ajax.php:23

authwp_ajax_preciso_remove_master_scriptincludes/class-ajax.php:25

authwp_ajax_preciso_clear_master_scriptsincludes/class-ajax.php:26

authwp_ajax_preciso_get_minimum_withdrawincludes/class-ajax.php:28

authwp_ajax_preciso_save_minimum_withdrawincludes/class-ajax.php:29

authwp_ajax_preciso_add_blacklist_domainincludes/class-ajax.php:31

authwp_ajax_preciso_remove_blacklist_domainincludes/class-ajax.php:32

noprivwp_ajax_preciso_ultima_signupincludes/submit.php:194

authwp_ajax_preciso_ultima_signupincludes/submit.php:199

REST API Routes 4

GET/wp-json/preciso-ultima/v1/add-master-scriptincludes/class-ajax.php:320

GET/wp-json/preciso-ultima/v1/remove-master-scriptincludes/class-ajax.php:326

GET/wp-json/preciso-ultima/v1/clear-master-scriptsincludes/class-ajax.php:332

GET/wp-json/preciso-ultima/v1/debug-pingincludes/class-ajax.php:338

WordPress Hooks 11

actionrest_api_initincludes/class-ajax.php:24

actionplugins_loadedincludes/class-html.php:53

actionadmin_menuincludes/class-ultima-publishers.php:54

actionadmin_enqueue_scriptsincludes/class-ultima-publishers.php:55

actionadmin_post_nopriv_preciso_ultima_signup_formincludes/signup-handler.php:180

actionadmin_post_preciso_ultima_signup_formincludes/signup-handler.php:183

actionplugins_loadedultima-publishers.php:49

actionadmin_post_preciso_ultima_add_master_scriptultima-publishers.php:56

actionadmin_post_preciso_ultima_remove_master_scriptultima-publishers.php:61

actionwp_headultima-publishers.php:207

actionadmin_enqueue_scriptsultima-publishers.php:362

Maintenance & Trust

Ultima Ads for Publishers Maintenance & Trust

Maintenance Signals

WordPress version tested6.9.4

Last updatedApr 2, 2026

PHP min version

Downloads81

Community Trust

Rating0/100

Number of ratings0

Active installs0

Alternatives

Ultima Ads for Publishers Alternatives

PurpleAds Ads.txt Manager

purpleads-ads-txt-manager

A

85

Simplify Your Ads.txt Management with PurpleAds

90 No CVEs

Adnow Native Widget

native-ads-adnow

A

92

Use the Adnow widget to monetize your website successfully with high quality native ads

60 No CVEs

Website Article Monetization By MageNet

website-article-monetization-by-magenet

A

100

Get additional income from your website or blog by placing text ads automatically.

20K 1 CVE

Website Monetization by MageNet

website-monetization-by-magenet

A

100

Get additional income from your website or blog by placing text ads automatically.

20K 1 CVE

Actirise – Advertising & Monetization

actirise

A

100

Premium advertising solution to grow your WordPress site revenue with no code and real-time insights.

200 No CVEs

Developer Profile

Ultima Ads for Publishers Developer Profile

preciso

2 plugins · 0 total installs

89

trust score

Avg Security Score

93/100

Avg Patch Time

30 days

View full developer profile

Detection Fingerprints

How We Detect Ultima Ads for Publishers

Patterns used to identify this plugin on WordPress sites during automated security audits and web crawling.

Asset Fingerprints

Asset Paths

/wp-content/plugins/ultima-publishers/assets/css/style.css

Script Paths

https://publishers.ultima-ads.com/adscript/100002.js

Version Parameters

ultima-publishers

HTML / DOM Fingerprints

FAQ

Ultima Ads for Publishers Security & Risk Analysis