WP-Safety

WD Restrictions Security & Risk Analysis

wordpress.org/plugins/wd-restrictions

Comprehensive WordPress access control for dashboard, admin bar, pages, and post types with role-based permissions.

0 active installs v1.0.1 PHP 7.4+ WP 5.8+ Updated Jan 10, 2026
access-controladmin-bardashboardrestrict-pagesuser-roles
100
A · Safe
CVEs total0
Unpatched0
Last CVENever
Plugin page Download
Safety Verdict

Is WD Restrictions Safe to Use in 2026?

Generally Safe

Score 100/100

WD Restrictions has no known CVEs and is actively maintained. It's a solid choice for most WordPress installations.

No known CVEs Updated 4mo ago
Risk Assessment

The "wd-restrictions" plugin version 1.0.1 exhibits a strong security posture based on the provided static analysis. The plugin effectively utilizes WordPress security best practices, including implementing nonce checks and capability checks for all its identified entry points (two AJAX handlers). Furthermore, all SQL queries are handled using prepared statements, and all output is properly escaped, mitigating common risks like SQL injection and cross-site scripting (XSS). The absence of dangerous functions, file operations, and external HTTP requests further strengthens its security profile. The taint analysis shows no identified flows with unsanitized paths, indicating no immediate vulnerabilities found in this area. The plugin also has no recorded vulnerability history, suggesting a consistent record of secure development or a lack of previous exploitation. However, it's important to note that static analysis can have limitations, and the absence of taint flows could be due to the limited nature of the analysis or the plugin's functionality. While the current version appears robust, continuous monitoring and future security audits are always recommended.

Vulnerabilities
None known

WD Restrictions Security Vulnerabilities

No known vulnerabilities — this is a good sign.
Version History

WD Restrictions Release Timeline

v1.0.1Current
v1.0.0
Code Analysis
Analyzed Mar 17, 2026

WD Restrictions Code Analysis

Dangerous Functions
0
Raw SQL Queries
0
0 prepared
Unescaped Output
0
63 escaped
Nonce Checks
2
Capability Checks
2
File Operations
0
External Requests
0
Bundled Libraries
0

Output Escaping

100% escaped63 total outputs
Attack Surface

WD Restrictions Attack Surface

Entry Points2
Unprotected0

AJAX Handlers 2

authwp_ajax_wd_restrict_get_pagesincludes\Admin\Settings.php:13
authwp_ajax_wd_restrict_get_post_typesincludes\Admin\Settings.php:14
WordPress Hooks 16
actionadmin_menuincludes\Admin\Settings.php:10
actionadmin_initincludes\Admin\Settings.php:11
actionadmin_enqueue_scriptsincludes\Admin\Settings.php:12
actionafter_setup_themeincludes\Core\AdminBarRestriction.php:10
filtershow_admin_barincludes\Core\AdminBarRestriction.php:33
actionadmin_initincludes\Core\DashboardRestriction.php:10
actiontemplate_redirectincludes\Core\PageRestriction.php:10
filterrocket_cache_reject_uriincludes\Core\PageRestriction.php:13
filterrocket_cache_query_stringsincludes\Core\PageRestriction.php:14
filterrocket_cache_reject_uriincludes\Core\PageRestriction.php:29
filterrocket_override_donotcachepageincludes\Core\PageRestriction.php:30
filterw3tc_can_cacheincludes\Core\PageRestriction.php:33
filterwpsc_enable_cacheincludes\Core\PageRestriction.php:36
filterlitespeed_cache_ignoreincludes\Core\PageRestriction.php:39
actiontemplate_redirectincludes\Core\PostTypeRestriction.php:10
actionplugins_loadedwd-restrictions.php:59
Maintenance & Trust

WD Restrictions Maintenance & Trust

Maintenance Signals

WordPress version tested6.9.4
Last updatedJan 10, 2026
PHP min version7.4
Downloads186

Community Trust

Rating0/100
Number of ratings0
Active installs0
Alternatives

WD Restrictions Alternatives

Robert22 Admin Bar and Access Control

Robert22 Admin Bar and Access Control

robert22-admin-bar-and-access-control

A
100

Advanced admin bar visibility and wp-admin access control with role-specific redirect configurations and granular permission management.

0 No CVEs
Hide Admin Bar Based on User Roles

Hide Admin Bar Based on User Roles

hide-admin-bar-based-on-user-roles

A
100

Hide the WordPress Admin Bar for specific user roles, capabilities, devices, pages, or time windows. The ultimate toolbar control plugin for membershi …

20K 1 CVE
Hide Admin Bar from Non-Admins

Hide Admin Bar from Non-Admins

hide-admin-bar-from-non-admins

A
92

Hides the WordPress toolbar (admin bar) for all non-admin users. Simple plugin with no settings to configure.

10K No CVEs
Admin Bar & Dashboard Access Control

Admin Bar & Dashboard Access Control

admin-bar-dashboard-control

A
100

Disable admin bar and control users access to WordPress dashboard.

3K 1 CVE
Role Based Redirect

Role Based Redirect

role-based-redirect

A
100

Redirect users after login/logout by role. Optionally hide admin bar and block dashboard access for selected roles.

2K No CVEs
Developer Profile

WD Restrictions Developer Profile

WolfDevs

3 plugins · 10 total installs

94
trust score
Avg Security Score
100/100
Avg Patch Time
30 days
View full developer profile
Detection Fingerprints

How We Detect WD Restrictions

Patterns used to identify this plugin on WordPress sites during automated security audits and web crawling.

Asset Fingerprints

Asset Paths
/wp-content/plugins/wd-restrictions/assets/css/backend.css/wp-content/plugins/wd-restrictions/assets/js/backend.js/wp-content/plugins/wd-restrictions/assets/css/frontend.css
Script Paths
/wp-content/plugins/wd-restrictions/assets/js/backend.js
Version Parameters
wd-restrictions/assets/css/backend.css?ver=wd-restrictions/assets/js/backend.js?ver=wd-restrictions/assets/css/frontend.css?ver=

HTML / DOM Fingerprints

CSS Classes
wd-restrictions-settings-page
Data Attributes
data-wd-restrict-pagesdata-wd-restrict-post-types
JS Globals
WD_RESTRICT_SETTINGS_PARAMS
REST Endpoints
/wp-json/wd-restrictions/v1/pages/wp-json/wd-restrictions/v1/post-types
FAQ

Frequently Asked Questions about WD Restrictions