WP-Safety

VigIA – AI Visibility, Analytics & Control Security & Risk Analysis

wordpress.org/plugins/vigia

Monitor 50+ AI crawlers, control access via robots.txt, and boost your AI visibility with llms.txt, JSON-LD, Markdown for Agents & Visibility Score.

600 active installs v1.9.0 PHP 7.4+ WP 6.2+ Updated Mar 13, 2026
aianalyticsclaudegptllms
100
A · Safe
CVEs total0
Unpatched0
Last CVENever
Plugin page Download
Safety Verdict

Is VigIA – AI Visibility, Analytics & Control Safe to Use in 2026?

Generally Safe

Score 100/100

VigIA – AI Visibility, Analytics & Control has no known CVEs and is actively maintained. It's a solid choice for most WordPress installations.

No known CVEs Updated 21d ago
Risk Assessment

The plugin "vigia" v1.9.0 exhibits a generally strong security posture, with no known vulnerabilities recorded in its history and a robust implementation of security best practices in its static analysis. The absence of any CVEs, especially critical or high severity ones, is a significant positive indicator. The code analysis reveals a conscientious effort towards security, with all SQL queries using prepared statements, a high percentage of output being properly escaped, and comprehensive nonce and capability checks implemented for all identified entry points.

Despite the overall strong showing, there are a few minor areas for attention. The presence of three 'Dangerous functions' (preg_replace(/e)), while not immediately indicative of a vulnerability without further context, warrants careful code review to ensure they are used in a secure manner and do not introduce risks for remote code execution or other vulnerabilities. The static analysis did not reveal any taint flows with unsanitized paths, which is excellent, but the limited number of flows analyzed (2) suggests that a more comprehensive taint analysis might be beneficial to confirm the absence of any subtle injection vulnerabilities.

In conclusion, "vigia" v1.9.0 appears to be a well-secured plugin, particularly given its clean vulnerability history and adherence to many security best practices. The primary concern, albeit minor and requiring further investigation, is the use of 'Dangerous functions'. However, the complete lack of known vulnerabilities and the strong implementation of other security controls suggest a mature and relatively safe plugin.

Key Concerns

  • Dangerous functions (preg_replace(/e)) found
Vulnerabilities
None known

VigIA – AI Visibility, Analytics & Control Security Vulnerabilities

No known vulnerabilities — this is a good sign.
Code Analysis
Analyzed Mar 16, 2026

VigIA – AI Visibility, Analytics & Control Code Analysis

Dangerous Functions
3
Raw SQL Queries
0
40 prepared
Unescaped Output
105
420 escaped
Nonce Checks
24
Capability Checks
26
File Operations
9
External Requests
3
Bundled Libraries
0

Dangerous Functions Found

preg_replace(/e)preg_replace( '/\[embed[^\]]*\].*?\[\/eincludes\class-llms-generator.php:898
preg_replace(/e)preg_replace( '/\[\/eincludes\class-llms-generator.php:1038
preg_replace(/e)preg_replace( '/\[\/eincludes\class-llms-generator.php:1098

SQL Query Safety

100% prepared40 total queries

Output Escaping

80% escaped525 total outputs
Data Flows
All sanitized

Data Flow Analysis

2 flows
block_success_notice (vigia.php:586)
Source (user input) Sink (dangerous op) Sanitizer Transform Unsanitized Sanitized
Attack Surface

VigIA – AI Visibility, Analytics & Control Attack Surface

Entry Points24
Unprotected0

AJAX Handlers 24

authwp_ajax_vigia_dismiss_noticevigia.php:127
authwp_ajax_vigia_save_settingsvigia.php:138
authwp_ajax_vigia_delete_all_datavigia.php:139
authwp_ajax_vigia_add_custom_crawlervigia.php:140
authwp_ajax_vigia_remove_custom_crawlervigia.php:141
authwp_ajax_vigia_toggle_crawlers_boxvigia.php:142
authwp_ajax_vigia_block_crawlervigia.php:145
authwp_ajax_vigia_unblock_crawlervigia.php:146
authwp_ajax_vigia_unblock_by_idvigia.php:147
authwp_ajax_vigia_add_robots_rulevigia.php:150
authwp_ajax_vigia_remove_robots_rulevigia.php:151
authwp_ajax_vigia_get_robots_contentvigia.php:152
authwp_ajax_vigia_save_email_settingsvigia.php:155
authwp_ajax_vigia_test_emailvigia.php:156
authwp_ajax_vigia_generate_llmsvigia.php:159
authwp_ajax_vigia_save_llms_settingsvigia.php:160
authwp_ajax_vigia_delete_llms_filesvigia.php:161
authwp_ajax_vigia_search_postsvigia.php:164
authwp_ajax_vigia_get_taxonomiesvigia.php:165
authwp_ajax_vigia_save_markdown_settingsvigia.php:168
authwp_ajax_vigia_save_jsonld_settingsvigia.php:171
authwp_ajax_vigia_dismiss_aiss_tipvigia.php:174
authwp_ajax_vigia_run_visibility_analysisvigia.php:177
authwp_ajax_vigia_search_visibility_urlsvigia.php:178
WordPress Hooks 31
actionwp_abilities_api_categories_initincludes\class-abilities.php:39
actionwp_abilities_api_initincludes\class-abilities.php:42
filtercron_schedulesincludes\class-email-alerts.php:102
filtercron_schedulesincludes\class-email-alerts.php:494
actionwp_headincludes\class-jsonld-generator.php:92
filtercron_schedulesincludes\class-llms-generator.php:97
filterthe_contentincludes\class-llms-generator.php:1194
actioninitincludes\class-llms-generator.php:1422
actioninitincludes\class-markdown-endpoints.php:55
filterquery_varsincludes\class-markdown-endpoints.php:56
actiontemplate_redirectincludes\class-markdown-endpoints.php:60
actionwp_headincludes\class-markdown-endpoints.php:64
actiontemplate_redirectincludes\class-markdown-endpoints.php:69
filterthe_contentincludes\class-markdown-endpoints.php:602
filterrobots_txtincludes\class-robots-manager.php:35
actioninitincludes\class-robots-manager.php:642
actionplugins_loadedvigia.php:94
actioninitvigia.php:97
actionadmin_menuvigia.php:98
actionadmin_menuvigia.php:99
actionadmin_menuvigia.php:100
actionadmin_enqueue_scriptsvigia.php:101
actionwp_dashboard_setupvigia.php:102
actionrest_api_initvigia.php:103
actionplugins_loadedvigia.php:111
actionwpvigia.php:114
actionvigia_daily_cleanupvigia.php:117
actionvigia_send_email_alertsvigia.php:118
actionvigia_llms_regeneratevigia.php:119
actionadmin_noticesvigia.php:125
actionadmin_noticesvigia.php:126

Scheduled Events 2

vigia_send_email_alerts
vigia_daily_cleanup
Maintenance & Trust

VigIA – AI Visibility, Analytics & Control Maintenance & Trust

Maintenance Signals

WordPress version tested6.9.4
Last updatedMar 13, 2026
PHP min version7.4
Downloads4K

Community Trust

Rating100/100
Number of ratings10
Active installs600
Alternatives

VigIA – AI Visibility, Analytics & Control Alternatives

MCPner LLMs.txt Generator

MCPner LLMs.txt Generator

llms-txt-generator-by-mcpner

A
100

Make your website AI-ready with LLM-optimized content files. Generate llms.txt files for ChatGPT, Claude, and other AI systems.

80 No CVEs
AI Engine – The Chatbot, AI Framework & MCP for WordPress

AI Engine – The Chatbot, AI Framework & MCP for WordPress

ai-engine

B
76

AI meets WordPress. Your site can now chat, write poetry, solve problems, and maybe make you coffee.

100K 22 CVEs
AI Puffer – Your AI engine for WordPress (formerly AI Power)

AI Puffer – Your AI engine for WordPress (formerly AI Power)

gpt3-ai-content-generator

A
86

Your AI engine for WordPress. Chat, write, automate, and generate — all in one workspace.

10K 10 CVEs
AI Share & Summarize

AI Share & Summarize

ai-share-summarize

A
100

Share on social media and generate summaries with citations from leading AIs (Claude, ChatGPT, Gemini, Grok, Perplexity, DeepSeek, Copilot, Qwen)

900 No CVEs
LLM Bot Tracker – AI Crawler Detection & Analytics

LLM Bot Tracker – AI Crawler Detection & Analytics

llm-bot-tracker-by-hueston

A
100

Automatically track ChatGPT, Claude, Perplexity & 56 AI bots crawling your WordPress site. Monitor AI search engine visits, detect AI web scrapers …

500 No CVEs
Developer Profile

VigIA – AI Visibility, Analytics & Control Developer Profile

Fernando Tellado

21 plugins · 24K total installs

94
trust score
Avg Security Score
100/100
Avg Patch Time
30 days
View full developer profile
Detection Fingerprints

How We Detect VigIA – AI Visibility, Analytics & Control

Patterns used to identify this plugin on WordPress sites during automated security audits and web crawling.

Asset Fingerprints

Asset Paths
/wp-content/plugins/vigia/assets/css/vigia.css/wp-content/plugins/vigia/assets/js/vigia.js
Script Paths
/wp-content/plugins/vigia/assets/js/vigia.js
Version Parameters
vigia/assets/css/vigia.css?ver=vigia/assets/js/vigia.js?ver=

HTML / DOM Fingerprints

CSS Classes
vigia-settings-sectionvigia-dashboard-widgetvigia-promo-banner
HTML Comments
<!-- VigIA AI Visibility, Analytics & Control --><!-- Generated by VigIA --><!-- VigIA Promo Banner -->
Data Attributes
data-vigia-admin-url
JS Globals
vigia_ajax_objectVigia
REST Endpoints
/wp-json/vigia/v1/settings/wp-json/vigia/v1/robots/wp-json/vigia/v1/llms/wp-json/vigia/v1/visibility
FAQ

Frequently Asked Questions about VigIA – AI Visibility, Analytics & Control