WP-Safety

WP Quadratum Security & Risk Analysis

wordpress.org/plugins/wp-quadratum

Display your last Swarm checkin as a map widget in the sidebar or embedded in a post or page, fully authenticated via OAuth 2.0.

10 active installs v1.3.1.4 PHP + WP 3.9.0+ Updated Feb 5, 2015
checkinsfoursquaremapmapswp-quadratum
85
A · Safe
CVEs total0
Unpatched0
Last CVENever
Plugin page Download
Safety Verdict

Is WP Quadratum Safe to Use in 2026?

Generally Safe

Score 85/100

WP Quadratum has no known CVEs and is actively maintained. It's a solid choice for most WordPress installations.

No known CVEs Updated 11yr ago
Risk Assessment

The wp-quadratum plugin version 1.3.1.4 exhibits a generally strong security posture based on the static analysis and vulnerability history. The absence of known CVEs and the plugin's commitment to using prepared statements for a high percentage of its SQL queries (79%) are positive indicators. Furthermore, the limited number of external HTTP requests and file operations suggest a contained functionality, which often correlates with fewer potential vulnerabilities. The plugin also demonstrates awareness of security best practices by including nonce and capability checks, although these are present only once, suggesting they might not be universally applied across all functionalities.

However, a critical concern arises from the taint analysis, which identified one flow with an unsanitized path. While no critical or high severity issues were found in the taint analysis, this single instance of an unsanitized path represents a potential entry point for path traversal vulnerabilities if not handled with extreme care. Additionally, the output escaping percentage (65%) indicates that a significant portion of output is not properly escaped, which could lead to cross-site scripting (XSS) vulnerabilities if user-supplied data is echoed directly into the HTML without sanitization.

The complete lack of historical vulnerabilities is a strong positive, implying consistent development focus on security or a very limited exposure to attack vectors. However, this can also sometimes indicate a lack of extensive security auditing or a very niche use case. In conclusion, while wp-quadratum has made commendable efforts in secure coding practices like prepared statements and the absence of known vulnerabilities, the identified unsanitized path and the moderate rate of output escaping warrant attention to prevent potential security incidents.

Key Concerns

  • Flow with unsanitized path identified
  • Significant portion of output not escaped
  • Nonce and capability checks appear limited
Vulnerabilities
None known

WP Quadratum Security Vulnerabilities

No known vulnerabilities — this is a good sign.
Code Analysis
Analyzed Mar 17, 2026

WP Quadratum Code Analysis

Dangerous Functions
0
Raw SQL Queries
14
52 prepared
Unescaped Output
17
32 escaped
Nonce Checks
1
Capability Checks
1
File Operations
17
External Requests
3
Bundled Libraries
0

SQL Query Safety

79% prepared66 total queries

Output Escaping

65% escaped49 total outputs
Data Flows
1 unsanitized

Data Flow Analysis

1 flows1 with unsanitized paths
<OAuthRequest> (includes\factual-php-driver\oauth-php\library\OAuthRequest.php:0)
Source (user input) Sink (dangerous op) Sanitizer Transform Unsanitized Sanitized
Attack Surface

WP Quadratum Attack Surface

Entry Points5
Unprotected0

Shortcodes 5

[wp_quadratum] includes\class-wp-quadratum-frontend.php:26
[wp_quadratum_map] includes\class-wp-quadratum-frontend.php:27
[wpq_map] includes\class-wp-quadratum-frontend.php:28
[wp_quadratum_locality] includes\class-wp-quadratum-frontend.php:30
[wpq_locality] includes\class-wp-quadratum-frontend.php:31
Maintenance & Trust

WP Quadratum Maintenance & Trust

Maintenance Signals

WordPress version tested4.1.0
Last updatedFeb 5, 2015
PHP min version
Downloads4K

Community Trust

Rating0/100
Number of ratings0
Active installs10
Alternatives

WP Quadratum Alternatives

WP Go Maps (formerly WP Google Maps)

WP Go Maps (formerly WP Google Maps)

wp-google-maps

A
86

The easiest to use Google maps plugin! Create a custom Google map, map block, store locator or map widget with high quality markers containing categor &hellip;

300K 23 CVEs
Hotjar

Hotjar

hotjar

A
85

The fast & visual way to understand your users.

80K 1 CVE
iframe

iframe

iframe

A
97

[iframe src="http://www.youtube.com/embed/7_nAZQt9qu0" width="100%" height="500"] shortcode

70K 6 CVEs
WP Maps – Store Locator,Google Maps,OpenStreetMap,Mapbox,Listing,Directory & Filters

WP Maps – Store Locator,Google Maps,OpenStreetMap,Mapbox,Listing,Directory & Filters

wp-google-map-plugin

A
88

WordPress map plugin for Google Maps, OpenStreetMap & Mapbox with store locator, filterable listings & custom markers.

60K 21 CVEs
WP Store Locator

WP Store Locator

wp-store-locator

A
98

An easy to use location management system that enables users to search for nearby physical stores.

50K 1 CVE
Developer Profile

WP Quadratum Developer Profile

vicchi

4 plugins · 70 total installs

84
trust score
Avg Security Score
85/100
Avg Patch Time
30 days
View full developer profile
Detection Fingerprints

How We Detect WP Quadratum

Patterns used to identify this plugin on WordPress sites during automated security audits and web crawling.

Asset Fingerprints

Asset Paths
/wp-content/plugins/wp-quadratum/css/normalize.css/wp-content/plugins/wp-quadratum/css/wp-quadratum.css/wp-content/plugins/wp-quadratum/js/script.js/wp-content/plugins/wp-quadratum/js/wp-quadratum.js
Script Paths
/wp-content/plugins/wp-quadratum/js/script.js/wp-content/plugins/wp-quadratum/js/wp-quadratum.js
Version Parameters
wp-quadratum/css/normalize.css?ver=wp-quadratum/css/wp-quadratum.css?ver=wp-quadratum/js/script.js?ver=wp-quadratum/js/wp-quadratum.js?ver=

HTML / DOM Fingerprints

CSS Classes
wp-quadratum-gallerywp-quadratum-itemwp-quadratum-metawp-quadratum-titlewp-quadratum-descriptionwp-quadratum-date
Data Attributes
data-wp-quadratum-id
JS Globals
wpQuadratum
Shortcode Output
[wp_quadratum_gallery[/wp_quadratum_gallery]
FAQ

Frequently Asked Questions about WP Quadratum