Does Website information Report have any unpatched vulnerabilities?

No. All known vulnerabilities in Website information Report have been patched as of the latest data update. Always keep the plugin updated to the latest version.

Is Website information Report compatible with WordPress 5.9.13?

According to WordPress.org data, Website information Report 1.3 has been tested up to WordPress 5.9.13. Check the plugin's changelog for the latest compatibility information.

Is Website information Report compatible with PHP 7.2.29+?

Website information Report requires PHP 7.2.29 or higher. Most modern WordPress hosts run PHP 8.1 or 8.2. If you are on an older PHP version, consider upgrading before installing this plugin.

How often is Website information Report updated?

Website information Report was last updated on Sep 27, 2022. Frequent updates are generally a positive security signal.

What is Website information Report's security score?

Website information Report has a WP-Safety security score of 85/100. This score is computed from CVE history, patch response time, developer trust signals, and plugin maintenance activity.

Website information Report Security & Risk Analysis

wordpress.org/plugins/website-information-report

Report on Website Information Provide information such as WordPress version, PHP version,active status(Away to online,online,offline), installed plugi …

0 active installs v1.3 PHP 7.2.29+ WP 5.2+ Updated Sep 27, 2022

phpphp-versionwordpress-reportswordpress-versionwp-version

A · Safe

CVEs total0

Unpatched0

Last CVENever

Download

Safety Verdict

Is Website information Report Safe to Use in 2026?

Generally Safe

Score 85/100

Website information Report has no known CVEs and is actively maintained. It's a solid choice for most WordPress installations.

No known CVEs Updated 3yr ago

Risk Assessment

The "website-information-report" plugin v1.3 exhibits significant security concerns despite a clean vulnerability history and no reported CVEs. The static analysis reveals a critical weakness in its attack surface, with 100% of its entry points (2 AJAX handlers) lacking any authentication or capability checks. This means any unauthenticated user can trigger these AJAX actions, potentially leading to unintended behavior or information disclosure. Furthermore, the code analysis indicates a severe lack of output escaping, with 0% of identified outputs being properly escaped. This leaves the plugin highly susceptible to Cross-Site Scripting (XSS) vulnerabilities, allowing attackers to inject malicious scripts that can be executed in the context of a user's browser. While the plugin does not appear to have dangerous functions or file operations, and it doesn't make external HTTP requests, the absence of basic security controls on its entry points and the universal failure to escape output represent a substantial risk.

Key Concerns

Unprotected AJAX handlers
Output escaping completely missing
No nonce checks on AJAX
No capability checks

Vulnerabilities

None known

Website information Report Security Vulnerabilities

No known vulnerabilities — this is a good sign.

Code Analysis

Analyzed Mar 17, 2026

Website information Report Code Analysis

Dangerous Functions

Raw SQL Queries

3 prepared

Unescaped Output

0 escaped

Nonce Checks

Capability Checks

File Operations

External Requests

Bundled Libraries

SQL Query Safety

27% prepared11 total queries

Output Escaping

0% escaped4 total outputs

Attack Surface

2 unprotected

Website information Report Attack Surface

Entry Points2

Unprotected2

AJAX Handlers 2

authwp_ajax_show_user_statusWebsite-information-Report.php:154

noprivwp_ajax_show_user_statusWebsite-information-Report.php:155

WordPress Hooks 5

actionadmin_menuWebsite-information-Report.php:15

actionwp_loginWebsite-information-Report.php:49

actionwp_logoutWebsite-information-Report.php:58

actionadmin_enqueue_scriptsWebsite-information-Report.php:152

actionadmin_footerWebsite-information-Report.php:180

Maintenance & Trust

Website information Report Maintenance & Trust

Maintenance Signals

WordPress version tested5.9.13

Last updatedSep 27, 2022

PHP min version7.2.29

Downloads3K

Community Trust

Rating0/100

Number of ratings0

Active installs0

Alternatives

Website information Report Alternatives

Server IP & Memory Usage Display

server-ip-memory-usage

100

Show the memory limit, current memory usage and IP address in the admin footer.

30K No CVEs

Version Info – Server Health Monitor, PHP & MySQL Version Display, Environment Indicators

version-info

100

The #1 technical dashboard for WordPress professionals. Display PHP, MySQL, WP & server versions anywhere in admin. Monitor CPU, RAM, DB size &amp …

10K No CVEs

Plugin Compatibility Checker

plugin-compatibility-checker

100

Scan and check your plugins for PHP and WordPress compatibility. Requires a $1/month Portal subscription to obtain a license key.

8K No CVEs

PHP Version

php-version

100

You can able to see the current PHP version in WordPress admin dashboard widget.

4K No CVEs

MyServerInfo – Memory Usage, PHP Version, Memory Limit, Execution Time, CPU Usage, Disk Usage

my-server-info

100

Displays Usage (CPU , Disk, Memory), PHP and MySQL Version, WP Memory Limit, PHP Execution Time, Max Input Vars, IP Address, Uptime, Timezone.

700 No CVEs

Developer Profile

Website information Report Developer Profile

narolainfotech

4 plugins · 10 total installs

trust score

Avg Security Score

93/100

Avg Patch Time

30 days

View full developer profile

Detection Fingerprints

How We Detect Website information Report

Patterns used to identify this plugin on WordPress sites during automated security audits and web crawling.

Asset Fingerprints

Asset Paths

/wp-content/plugins/website-information-report/wordpress.css

HTML / DOM Fingerprints

CSS Classes

system_envuser_status

REST Endpoints

/wp-ajax-script.js?action=show_user_status

FAQ