Does Valserv Analytics for SentinelPro have any unpatched vulnerabilities?

No published vulnerabilities and no findings under coordinated disclosure as of the latest data update. Always keep the plugin updated to the latest version.

Is Valserv Analytics for SentinelPro compatible with WordPress 6.9.4?

According to WordPress.org data, Valserv Analytics for SentinelPro 1.1.0 has been tested up to WordPress 6.9.4. Check the plugin's changelog for the latest compatibility information.

Is Valserv Analytics for SentinelPro compatible with PHP 7.4+?

Valserv Analytics for SentinelPro requires PHP 7.4 or higher. Most modern WordPress hosts run PHP 8.1 or 8.2. If you are on an older PHP version, consider upgrading before installing this plugin.

How often is Valserv Analytics for SentinelPro updated?

Valserv Analytics for SentinelPro was last updated on Jan 29, 2026. Frequent updates are generally a positive security signal.

What is Valserv Analytics for SentinelPro's security score?

Valserv Analytics for SentinelPro has a WP-Safety security score of 100/100. This score is computed from CVE history, patch response time, developer trust signals, and plugin maintenance activity.

Valserv Analytics for SentinelPro Security & Risk Analysis

wordpress.org/plugins/valserv-analytics-for-sentinelpro

Connect your site to SentinelPro Analytics with real-time tracking, post-level metrics, and a privacy-focused dashboard.

0 active installs v1.1.0 PHP 7.4+ WP 5.0+ Updated Jan 29, 2026

analyticsprivacy-firstsentinelprostatisticstracking

A · Safe

CVEs total0

Unpatched0

Last CVENever

Download

Safety Verdict

Is Valserv Analytics for SentinelPro Safe to Use in 2026?

Generally Safe

Score 100/100

Valserv Analytics for SentinelPro has no known CVEs and is actively maintained. It's a solid choice for most WordPress installations.

No known CVEs Updated 3mo ago

Risk Assessment

The valserv-analytics-for-sentinelpro plugin v1.1.0 exhibits a mixed security posture. On the positive side, it demonstrates good practices by utilizing prepared statements for the majority of its SQL queries and properly escaping a significant portion of its output. The plugin also incorporates a substantial number of nonce and capability checks, which are essential for securing WordPress functionalities.

However, the analysis reveals significant areas of concern. The presence of 8 AJAX handlers without any authentication checks represents a considerable attack surface that could be exploited by unauthenticated users. While no critical or high-severity taint flows were identified, the 4 flows with unsanitized paths warrant attention, as they could potentially lead to vulnerabilities if not properly handled downstream.

The plugin's history of zero known CVEs is a positive indicator, suggesting a relatively stable and secure past. Nevertheless, the identified unauthenticated AJAX endpoints are a critical weakness that could overshadow the plugin's other strengths. The overall risk is moderate, leaning towards high due to the unauthenticated entry points, despite a clean vulnerability history.

Key Concerns

AJAX handlers without authentication checks
Flows with unsanitized paths (4)

Vulnerabilities

None known

Valserv Analytics for SentinelPro Security Vulnerabilities

No known vulnerabilities — this is a good sign.

Version History

Valserv Analytics for SentinelPro Release Timeline

v1.1.0Current

v1.0.13

v1.0.12

v1.0.11

v1.0.10

v1.0.9

v1.0.8

v1.0.7

v1.0.6

v1.0.5

v1.0.4

v1.0.3

v1.0.2

v1.0.1

Code Analysis

Analyzed Mar 17, 2026

Valserv Analytics for SentinelPro Code Analysis

Dangerous Functions

Raw SQL Queries

104 prepared

Unescaped Output

132

393 escaped

Nonce Checks

Capability Checks

File Operations

External Requests

Bundled Libraries

SQL Query Safety

81% prepared128 total queries

Output Escaping

75% escaped525 total outputs

Data Flows · Security

4 unsanitized

Data Flow Analysis

15 flows4 with unsanitized paths

valserv_fetch_data (includes\api.php:234)

Source (user input) Sink (dangerous op) Sanitizer Transform Unsanitized Sanitized

Attack Surface

8 unprotected

Valserv Analytics for SentinelPro Attack Surface

Entry Points50

Unprotected8

AJAX Handlers 50

authwp_ajax_vasp_get_cacheadmin\AdminUtils\class-vasp-ajax-handler.php:25

authwp_ajax_vasp_set_cacheadmin\AdminUtils\class-vasp-ajax-handler.php:26

authwp_ajax_vasp_clear_cacheadmin\AdminUtils\class-vasp-ajax-handler.php:27

authwp_ajax_vasp_clear_all_cacheadmin\AdminUtils\class-vasp-ajax-handler.php:28

authwp_ajax_vasp_find_overlapping_cacheadmin\AdminUtils\class-vasp-ajax-handler.php:29

authwp_ajax_vasp_find_all_overlapping_rangesadmin\AdminUtils\class-vasp-ajax-handler.php:30

authwp_ajax_vasp_merge_and_replace_rangesadmin\AdminUtils\class-vasp-ajax-handler.php:31

authwp_ajax_vasp_has_fresh_cacheadmin\AdminUtils\class-vasp-ajax-handler.php:32

authwp_ajax_vasp_find_superset_cacheadmin\AdminUtils\class-vasp-ajax-handler.php:33

authwp_ajax_vasp_cleanup_expiredadmin\AdminUtils\class-vasp-ajax-handler.php:34

authwp_ajax_vasp_log_requestadmin\AdminUtils\class-vasp-ajax-handler.php:35

authwp_ajax_vasp_save_user_sessionadmin\AdminUtils\class-vasp-ajax-handler.php:36

authwp_ajax_vasp_get_user_sessionadmin\AdminUtils\class-vasp-ajax-handler.php:37

authwp_ajax_vasp_save_settingadmin\AdminUtils\class-vasp-ajax-handler.php:38

authwp_ajax_vasp_get_settingadmin\AdminUtils\class-vasp-ajax-handler.php:39

authwp_ajax_valserv_fetch_database_dataadmin\AdminUtils\class-vasp-ajax-handler.php:40

authwp_ajax_vasp_refresh_dimensions_configurationadmin\AdminUtils\class-vasp-ajax-handler.php:41

authwp_ajax_vasp_get_oldest_dateadmin\AdminUtils\class-vasp-ajax-handler.php:42

authwp_ajax_vasp_reschedule_cron_4amadmin\AdminUtils\class-vasp-ajax-handler.php:43

authwp_ajax_vasp_change_user_roleadmin\AdminUtils\class-vasp-privilege-manager.php:26

authwp_ajax_vasp_change_clearanceadmin\AdminUtils\class-vasp-privilege-manager.php:27

authwp_ajax_vasp_change_accessadmin\AdminUtils\class-vasp-privilege-manager.php:28

authwp_ajax_valserv_fetch_dataadmin\AdminUtils\class-vasp-rate-limiter.php:19

authwp_ajax_vasp_fetch_usersadmin\AdminUtils\class-vasp-rate-limiter.php:20

authwp_ajax_vasp_log_eventadmin\AdminUtils\class-vasp-rate-limiter.php:21

noprivwp_ajax_vasp_log_eventadmin\AdminUtils\class-vasp-rate-limiter.php:22

authwp_ajax_valserv_fetch_database_dataadmin\AdminUtils\class-vasp-security-config.php:44

authwp_ajax_vasp_save_settingadmin\AdminUtils\class-vasp-security-config.php:45

authwp_ajax_valserv_fetch_dataadmin\AdminUtils\class-vasp-security-headers.php:23

authwp_ajax_vasp_fetch_usersadmin\AdminUtils\class-vasp-security-headers.php:24

authwp_ajax_vasp_set_clearanceadmin\AdminUtils\class-vasp-security-manager.php:69

authwp_ajax_vasp_get_clearanceadmin\AdminUtils\class-vasp-security-manager.php:70

authwp_ajax_vasp_get_access_logsadmin\class-vasp-analytics-admin.php:46

authwp_ajax_vasp_fetch_usersadmin\class-vasp-analytics-admin.php:76

authwp_ajax_vasp_save_authadmin\class-vasp-analytics-admin.php:77

authwp_ajax_vasp_ajax_upload_previewadmin\class-vasp-analytics-admin.php:80

authwp_ajax_vasp_import_csv_urladmin\class-vasp-analytics-admin.php:81

authwp_ajax_valserv_fetch_dataadmin\class-vasp-analytics-admin.php:82

authwp_ajax_valserv_search_postsincludes\api.php:26

authwp_ajax_valserv_fetch_dataincludes\api.php:232

authwp_ajax_valserv_log_eventvalserv-analytics-for-sentinelpro.php:269

noprivwp_ajax_valserv_log_eventvalserv-analytics-for-sentinelpro.php:270

authwp_ajax_vasp_set_access_restrictedvalserv-analytics-for-sentinelpro.php:287

authwp_ajax_vasp_check_statusvalserv-analytics-for-sentinelpro.php:1122

authwp_ajax_vasp_reset_clearancevalserv-analytics-for-sentinelpro.php:1171

authwp_ajax_vasp_check_credentials_and_upgradevalserv-analytics-for-sentinelpro.php:1201

authwp_ajax_vasp_test_trackingvalserv-analytics-for-sentinelpro.php:1242

authwp_ajax_vasp_test_injectionvalserv-analytics-for-sentinelpro.php:1260

authwp_ajax_vasp_check_clearancevalserv-analytics-for-sentinelpro.php:1278

authwp_ajax_vasp_set_clearance_from_jsvalserv-analytics-for-sentinelpro.php:1296

WordPress Hooks 65

actionadmin_menuadmin\AdminUtils\class-vasp-admin-menu-manager.php:306

actionadmin_headadmin\AdminUtils\class-vasp-admin-menu-manager.php:309

filteradmin_body_classadmin\AdminUtils\class-vasp-admin-renderer.php:1022

filterscript_loader_tagadmin\AdminUtils\class-vasp-admin-script-manager.php:618

actionadmin_initadmin\AdminUtils\class-vasp-content-importer.php:13

actionadmin_noticesadmin\AdminUtils\class-vasp-csv-uploader-handler.php:181

actionadmin_noticesadmin\AdminUtils\class-vasp-csv-uploader-handler.php:185

actionadmin_initadmin\AdminUtils\class-vasp-database-manager.php:24

actionadmin_noticesadmin\AdminUtils\class-vasp-database-manager.php:848

actionadmin_initadmin\AdminUtils\class-vasp-privilege-manager.php:25

actionset_user_roleadmin\AdminUtils\class-vasp-privilege-manager.php:36

actionupdated_user_metaadmin\AdminUtils\class-vasp-privilege-manager.php:39

filteruser_has_capadmin\AdminUtils\class-vasp-privilege-manager.php:42

actionrest_api_initadmin\AdminUtils\class-vasp-rest-api.php:17

filterrest_authentication_errorsadmin\AdminUtils\class-vasp-rest-api.php:18

actionrest_api_initadmin\AdminUtils\class-vasp-rest-api.php:19

actionrest_pre_serve_requestadmin\AdminUtils\class-vasp-rest-api.php:485

actionadmin_initadmin\AdminUtils\class-vasp-security-config.php:35

actionsend_headersadmin\AdminUtils\class-vasp-security-config.php:38

filterhttp_request_host_is_externaladmin\AdminUtils\class-vasp-security-config.php:41

actionadmin_initadmin\AdminUtils\class-vasp-security-config.php:49

actionadmin_initadmin\AdminUtils\class-vasp-security-headers.php:22

actionadmin_initadmin\AdminUtils\class-vasp-security-manager.php:73

actioninitadmin\AdminUtils\class-vasp-security-manager.php:76

actionupdated_user_metaadmin\AdminUtils\class-vasp-security-manager.php:82

actioninitadmin\AdminUtils\class-vasp-security-manager.php:85

actionadmin_noticesadmin\AdminUtils\class-vasp-security-manager.php:88

actionshutdownadmin\AdminUtils\class-vasp-security-manager.php:92

actioninitadmin\AdminUtils\class-vasp-security-manager.php:100

actioninitadmin\AdminUtils\class-vasp-security-manager.php:105

actionshutdownadmin\AdminUtils\class-vasp-security-manager.php:901

actionupdate_option_vasp_optionsadmin\AdminUtils\class-vasp-superuser-enforcer.php:12

actionvasp_enforce_superuser_accessadmin\AdminUtils\class-vasp-superuser-enforcer.php:17

actionadmin_noticesadmin\AdminUtils\class-vasp-superuser-enforcer.php:113

actionwp_loadedadmin\AdminUtils\class-vasp-universal-cron-manager.php:30

actioninitadmin\AdminUtils\class-vasp-universal-cron-manager.php:35

filtercron_schedulesadmin\AdminUtils\class-vasp-universal-cron-manager.php:96

actionuser_registeradmin\AdminUtils\class-vasp-user-access-manager.php:220

actionadmin_initadmin\class-vasp-analytics-admin.php:43

actionadmin_initadmin\class-vasp-analytics-admin.php:44

actionadmin_initadmin\class-vasp-analytics-admin.php:47

actionadmin_menuadmin\class-vasp-analytics-admin.php:49

actionadmin_menuadmin\class-vasp-analytics-admin.php:52

actionadmin_enqueue_scriptsadmin\class-vasp-analytics-admin.php:54

actionwp_headincludes\class-vasp-analytics.php:34

filtermanage_post_posts_columnsincludes\post-metrics-column.php:41

actionmanage_post_posts_custom_columnincludes\post-metrics-column.php:42

filtermanage_edit-post_sortable_columnsincludes\post-metrics-column.php:43

actionwp_enqueue_scriptspublic\class-vasp-analytics-public.php:46

actionwp_headpublic\class-vasp-analytics-public.php:48

actionadmin_noticesvalserv-analytics-for-sentinelpro.php:91

actionadmin_initvalserv-analytics-for-sentinelpro.php:254

actionadmin_enqueue_scriptsvalserv-analytics-for-sentinelpro.php:259

actionadmin_initvalserv-analytics-for-sentinelpro.php:263

actionwp_footervalserv-analytics-for-sentinelpro.php:266

actionadmin_noticesvalserv-analytics-for-sentinelpro.php:282

actionadmin_noticesvalserv-analytics-for-sentinelpro.php:285

actioninitvalserv-analytics-for-sentinelpro.php:301

actionplugins_loadedvalserv-analytics-for-sentinelpro.php:314

actionadmin_enqueue_scriptsvalserv-analytics-for-sentinelpro.php:536

actionadmin_initvalserv-analytics-for-sentinelpro.php:807

actionupdate_option_vasp_optionsvalserv-analytics-for-sentinelpro.php:810

actionadmin_action_valserv_fix_clearancevalserv-analytics-for-sentinelpro.php:922

actioninitvalserv-analytics-for-sentinelpro.php:937

actionadmin_footervalserv-analytics-for-sentinelpro.php:997

Scheduled Events 2

vasp_daily_analytics_fetch

vasp_enforce_superuser_access

Maintenance & Trust

Valserv Analytics for SentinelPro Maintenance & Trust

Maintenance Signals

WordPress version tested6.9.4

Last updatedJan 29, 2026

PHP min version7.4

Downloads365

Community Trust

Rating0/100

Number of ratings0

Active installs0

Alternatives

Valserv Analytics for SentinelPro Alternatives

GA Google Analytics – Connect Google Analytics to WordPress

ga-google-analytics

100

Adds Google Analytics tracking code to your WordPress site. Supports many tracking features.

400K No CVEs

SlimStat Analytics

wp-slimstat

The leading web analytics plugin for WordPress

80K 24 CVEs

Connect Matomo – Analytics Dashboard for WordPress

wp-piwik

Adds Matomo (former Piwik) statistics to your WordPress dashboard and is also able to add the Matomo Tracking Code to your blog.

60K 5 CVEs

NewStatPress

newstatpress

NewStatPress (Statpress plugin fork) is a real-time plugin to manage the visits' statistics about your blog (without external web analytics).

9K 10 CVEs

User Activity Tracking and Log

user-activity-tracking-and-log

Track time and monitor user activity & history on your website, LMS online learning system, membership or WooCommerce site.

3K 2 CVEs

Developer Profile

Valserv Analytics for SentinelPro Developer Profile

sentinelpro

1 plugin · 0 total installs

trust score

Avg Security Score

100/100

Avg Patch Time

30 days

View full developer profile

Detection Fingerprints

How We Detect Valserv Analytics for SentinelPro

Patterns used to identify this plugin on WordPress sites during automated security audits and web crawling.

Asset Fingerprints

Asset Paths

/wp-content/plugins/valserv-analytics-for-sentinelpro/admin/AdminUtils/css/vasp-admin-styles.css/wp-content/plugins/valserv-analytics-for-sentinelpro/admin/AdminUtils/js/vasp-dashboard.js/wp-content/plugins/valserv-analytics-for-sentinelpro/admin/AdminUtils/js/vasp-analytics.js/wp-content/plugins/valserv-analytics-for-sentinelpro/admin/AdminUtils/js/vasp-settings.js

Script Paths

/wp-content/plugins/valserv-analytics-for-sentinelpro/admin/AdminUtils/js/vasp-dashboard.js/wp-content/plugins/valserv-analytics-for-sentinelpro/admin/AdminUtils/js/vasp-analytics.js/wp-content/plugins/valserv-analytics-for-sentinelpro/admin/AdminUtils/js/vasp-settings.js

Version Parameters

valserv-analytics-for-sentinelpro/admin/AdminUtils/css/vasp-admin-styles.css?ver=valserv-analytics-for-sentinelpro/admin/AdminUtils/js/vasp-dashboard.js?ver=valserv-analytics-for-sentinelpro/admin/AdminUtils/js/vasp-analytics.js?ver=valserv-analytics-for-sentinelpro/admin/AdminUtils/js/vasp-settings.js?ver=

HTML / DOM Fingerprints

CSS Classes

vasp-dashboard-containervasp-analytics-widget

Data Attributes

data-vasp-post-id

JS Globals

vasp_ajax_objectvasp_settings_datavasp_analytics_data

FAQ