View User Metadata Security & Risk Analysis
wordpress.org/plugins/view-user-metadataA lightweight plugin that allows you to view user metadata, export them CSV or JSON, or delete key/value pairs.
Is View User Metadata Safe to Use in 2026?
Generally Safe
Score 100/100View User Metadata has no known CVEs and is actively maintained. It's a solid choice for most WordPress installations.
The 'view-user-metadata' plugin version 1.2.2 exhibits a strong security posture based on the provided static analysis and vulnerability history. The code demonstrates good practices by implementing nonce checks and capability checks for its entry points. Furthermore, the absence of dangerous functions, file operations, and external HTTP requests is commendable, significantly reducing the potential attack surface. The plugin also scores well in output escaping and exclusively uses prepared statements for its SQL queries, mitigating common vulnerabilities like SQL injection. The lack of known CVEs and the absence of taint analysis findings further reinforce its current security. However, the presence of 2 AJAX handlers, while protected by authentication checks, still represents a potential entry point that warrants careful consideration in any security audit. Overall, the plugin is well-secured, with its primary strength lying in its robust implementation of security checks and the absence of critical or high-severity vulnerabilities. Continued vigilance and regular updates remain essential for maintaining this positive security standing.
Key Concerns
- 2 AJAX handlers with auth checks
- 12% of outputs not properly escaped
View User Metadata Security Vulnerabilities
View User Metadata Code Analysis
Output Escaping
View User Metadata Attack Surface
AJAX Handlers 2
WordPress Hooks 4
Maintenance & Trust
View User Metadata Maintenance & Trust
Maintenance Signals
Community Trust
View User Metadata Alternatives
PureDevs Any Meta Inspector
puredevs-any-meta-inspector
PureDevs Any Meta Inspector shows all the meta keys and their unserialized values in a metabox for posts, pages, terms, comments, and users.
User Import with meta – WP Ultimate CSV Importer Add-on
import-users
Import and export WordPress and WooCommerce users with full user meta, custom fields, billing & shipping details, and membership data.
JSON API User
json-api-user
Extends the JSON API Plugin to allow RESTful user registration, authentication & many other User Meta, BP functions. A Pro version is also available.
Custom Metadata Manager
custom-metadata
An easy way to add custom fields to your object types (post, pages, custom post types, users)
Extended CRM for Users Insights
extended-crm-for-users-insights
Extends the CRM functionality of Users Insights - adds new management options to the user groups, user notes and custom user fields features
View User Metadata Developer Profile
6 plugins · 18K total installs
How We Detect View User Metadata
Patterns used to identify this plugin on WordPress sites during automated security audits and web crawling.
Asset Fingerprints
/wp-content/plugins/view-user-metadata/assets/css/user.css/wp-content/plugins/view-user-metadata/assets/js/user.js/wp-content/plugins/view-user-metadata/assets/js/user.jsview-user-metadata/assets/css/user.css?ver=view-user-metadata/assets/js/user.js?ver=HTML / DOM Fingerprints
SS88-VUM-headingSS88VUM-toggleSS88VUM-export-wrapSS88VUM-export-triggerSS88VUM-export-menuSS88-VUM-table-wrapperSS88-VUM-tableflex-wrap+4 moredata-lockaria-labeldata-keydata-uiddata-formatSS88_VUM_translationsSS88_VUM_delete_nonceSS88_VUM_export_nonce/wp-json/view-user-metadata/v1/delete/wp-json/view-user-metadata/v1/export