Does WP Spatial Capabilities Check have any unpatched vulnerabilities?

No. All known vulnerabilities in WP Spatial Capabilities Check have been patched as of the latest data update. Always keep the plugin updated to the latest version.

Is WP Spatial Capabilities Check compatible with WordPress 4.7.32?

According to WordPress.org data, WP Spatial Capabilities Check 0.0.4 has been tested up to WordPress 4.7.32. Check the plugin's changelog for the latest compatibility information.

How often is WP Spatial Capabilities Check updated?

WP Spatial Capabilities Check was last updated on Unknown. Frequent updates are generally a positive security signal.

What is WP Spatial Capabilities Check's security score?

WP Spatial Capabilities Check has a WP-Safety security score of 100/100. This score is computed from CVE history, patch response time, developer trust signals, and plugin maintenance activity.

WP Spatial Capabilities Check Security & Risk Analysis

wordpress.org/plugins/wp-spatial-capabilities-check

Creates a page in the dashboard with a list of the spatial functions your database supports so you can do GIS with MySQL or MariaDB in WordPress.

10 active installs v0.0.4 PHP + WP 3.0.1+ Updated Unknown

geographygismariadbmysqlspatial

A · Safe

CVEs total0

Unpatched0

Last CVENever

Plugin page Download

Safety Verdict

Is WP Spatial Capabilities Check Safe to Use in 2026?

Generally Safe

Score 100/100

WP Spatial Capabilities Check has no known CVEs and is actively maintained. It's a solid choice for most WordPress installations.

No known CVEs

Risk Assessment

The wp-spatial-capabilities-check plugin version 0.0.4 exhibits a generally good security posture based on the provided static analysis. A significant strength is the complete absence of vulnerable code signals such as dangerous functions or SQL queries executed without prepared statements. The plugin also demonstrates a commitment to output escaping, with a high percentage of outputs properly escaped. Furthermore, the lack of known CVEs and a clean vulnerability history suggests a well-maintained and secure codebase over time.

However, there are a few areas that raise concerns and prevent a perfect score. The complete absence of nonce checks and capability checks across all identified entry points (even though the attack surface is currently zero) is a significant weakness. This indicates a lack of defense-in-depth and leaves the plugin vulnerable should new entry points be introduced or existing ones inadvertently exposed without proper authorization checks in the future. The plugin also performs file operations, and without further analysis, it's difficult to ascertain their security implications.

In conclusion, while the plugin has a strong foundation and has historically been secure, the lack of authorization checks on its potential entry points is a notable weakness that could be exploited if the attack surface were to grow. Addressing this would significantly enhance its overall security.

Key Concerns

Missing nonce checks on potential entry points
Missing capability checks on potential entry points

Vulnerabilities

None known

WP Spatial Capabilities Check Security Vulnerabilities

No known vulnerabilities — this is a good sign.

Code Analysis

Analyzed Mar 16, 2026

WP Spatial Capabilities Check Code Analysis

Dangerous Functions

Raw SQL Queries

23 prepared

Unescaped Output

14 escaped

Nonce Checks

Capability Checks

File Operations

External Requests

Bundled Libraries

SQL Query Safety

100% prepared23 total queries

Output Escaping

82% escaped17 total outputs

Attack Surface

WP Spatial Capabilities Check Attack Surface

Entry Points0

Unprotected0

WordPress Hooks 9

actionplugins_loadedwp-geometa-lib\wp-geometa-lib-loader.php:96

filterwpgm_pre_metaval_to_geomwp-geometa-lib\wp-geometa.php:116

filterwpgm_populate_geo_tableswp-geometa-lib\wp-geometa.php:117

filterwpgm_pre_delete_geometawp-geometa-lib\wp-geometa.php:118

filterwpgm_extra_sql_functionswp-geometa-lib\wp-geometa.php:119

actionget_meta_sqlwp-geometa-lib\wp-geoquery.php:65

actionplugins_loadedwp-geometa-lib\wp-geoutil.php:255

actionadmin_menuwp-spatial-capabilities-check.php:16

actionplugins_loadedwp-spatial-capabilities-check.php:79

Maintenance & Trust

WP Spatial Capabilities Check Maintenance & Trust

Maintenance Signals

WordPress version tested4.7.32

Last updatedUnknown

PHP min version

Downloads2K

Community Trust

Rating0/100

Number of ratings0

Active installs10

Alternatives

WP Spatial Capabilities Check Alternatives

Database Manager – WP Adminer

pexlechris-adminer

100

Manage the database from your WordPress Dashboard using Adminer.

20K 1 CVE

GeoMeta For ACF

geometa-acf

Store real spatial data with Advanced Custom Fields, using the WP-GeoMeta library.

100 No CVEs

Brilliant Geocoder for Gravity Forms

brilliant-geocoder-gravity-forms

Capture location information in Gravity Forms by geocoding user's input into other form fields.

30 No CVEs

Ninja Forms – The Contact Form Builder That Grows With You

ninja-forms

The 100% beginner friendly WordPress form builder. Drag & drop form fields to build beautiful, professional contact forms in minutes.

600K 75 CVEs

Ultimate Member – User Profile, Registration, Login, Member Directory, Content Restriction & Membership Plugin

ultimate-member

Membership & community plugin with user profiles, registration & login, member directories, content restriction, user roles and much more.

200K 70 CVEs

Developer Profile

WP Spatial Capabilities Check Developer Profile

Michael Moore

4 plugins · 150 total installs

trust score

Avg Security Score

89/100

Avg Patch Time

30 days

View full developer profile

Detection Fingerprints

How We Detect WP Spatial Capabilities Check

Patterns used to identify this plugin on WordPress sites during automated security audits and web crawling.

Asset Fingerprints

Asset Paths

/wp-content/plugins/wp-spatial-capabilities-check/spatial-layout.php

HTML / DOM Fingerprints

CSS Classes

spatialcapabiliteshassupportlackssupport

FAQ