Does WP Javascript Detect have any unpatched vulnerabilities?

No. All known vulnerabilities in WP Javascript Detect have been patched as of the latest data update. Always keep the plugin updated to the latest version.

Is WP Javascript Detect compatible with WordPress 3.0.5?

According to WordPress.org data, WP Javascript Detect 1.0 has been tested up to WordPress 3.0.5. Check the plugin's changelog for the latest compatibility information.

How often is WP Javascript Detect updated?

WP Javascript Detect was last updated on Apr 20, 2011. Frequent updates are generally a positive security signal.

What is WP Javascript Detect's security score?

WP Javascript Detect has a WP-Safety security score of 85/100. This score is computed from CVE history, patch response time, developer trust signals, and plugin maintenance activity.

WP Javascript Detect Security & Risk Analysis

wordpress.org/plugins/wp-javascript-detect

This plugin will display a warning message if the browser's Javascript is disabled. No set up is required, just install and activate.

30 active installs v1.0 PHP + WP 2.8+ Updated Apr 20, 2011

javascriptjavascript-detectjavascript-errorjswebmaster

A · Safe

CVEs total0

Unpatched0

Last CVENever

Plugin page Download

Safety Verdict

Is WP Javascript Detect Safe to Use in 2026?

Generally Safe

Score 85/100

WP Javascript Detect has no known CVEs and is actively maintained. It's a solid choice for most WordPress installations.

No known CVEs Updated 14yr ago

Risk Assessment

The "wp-javascript-detect" v1.0 plugin exhibits a generally good security posture based on the provided static analysis. The plugin has no known vulnerabilities in its history and demonstrates a complete absence of dangerous functions, file operations, and external HTTP requests. Furthermore, all SQL queries are properly prepared, indicating sound database interaction practices. However, a significant concern arises from the lack of output escaping. With 100% of its outputs unescaped, the plugin is susceptible to Cross-Site Scripting (XSS) vulnerabilities. Any dynamic data displayed to users could be manipulated by an attacker to inject malicious scripts, compromising user sessions or defacing the website. The absence of nonces and capability checks across all entry points, while currently not an issue due to the lack of exposed entry points, represents a latent risk should the plugin's functionality evolve to include user-interactable endpoints.

Key Concerns

All outputs are unescaped
No nonce checks on entry points
No capability checks on entry points

Vulnerabilities

None known

WP Javascript Detect Security Vulnerabilities

No known vulnerabilities — this is a good sign.

Code Analysis

Analyzed Mar 16, 2026

WP Javascript Detect Code Analysis

Dangerous Functions

Raw SQL Queries

0 prepared

Unescaped Output

0 escaped

Nonce Checks

Capability Checks

File Operations

External Requests

Bundled Libraries

Output Escaping

0% escaped2 total outputs

Attack Surface

WP Javascript Detect Attack Surface

Entry Points0

Unprotected0

WordPress Hooks 2

actionwp_footerwp-javascript-detect.php:31

actionwp_headwp-javascript-detect.php:71

Maintenance & Trust

WP Javascript Detect Maintenance & Trust

Maintenance Signals

WordPress version tested3.0.5

Last updatedApr 20, 2011

PHP min version

Downloads5K

Community Trust

Rating80/100

Number of ratings2

Active installs30

Alternatives

WP Javascript Detect Alternatives

SOGO Add Script to Individual Pages Header Footer

oh-add-script-header-footer

Simple plugin to add script to header and footer for individual pages & posts

20K No CVEs

TC Custom JavaScript

tc-custom-javascript

Add custom JavaScript to your site from a professional editor in the WordPress admin.

10K 1 CVE

Jquery Validation For Contact Form 7

jquery-validation-for-contact-form-7

New standard of advance validation for Contact Form 7.

9K 1 CVE

Better WordPress Minify

bwp-minify

Allows you to combine and minify your CSS and JS files to improve page load time.

8K No CVEs

ReactPress – Create React App for WordPress

reactpress

100

Easily create, build and deploy React apps into your existing WordPress sites.

3K No CVEs

Developer Profile

WP Javascript Detect Developer Profile

Daddydesign

5 plugins · 240 total installs

trust score

Avg Security Score

85/100

Avg Patch Time

30 days

View full developer profile

Detection Fingerprints

How We Detect WP Javascript Detect

Patterns used to identify this plugin on WordPress sites during automated security audits and web crawling.

Asset Fingerprints

Asset Paths

/wp-content/plugins/WP-Javascript-Detect/warning_symbol.png

HTML / DOM Fingerprints

CSS Classes

nojavascript

Shortcode Output

<noscript><div id="nojavascript"><p><span>WARNING:</span> We have detected that you currently have Javascript disabled. This website requires the use of Javascript, for the best possible viewing experience we highly recommend that you enable Javascript via your browser's options.</p></div></noscript>

FAQ