Does WP Tech Lookup have any unpatched vulnerabilities?

No. All known vulnerabilities in WP Tech Lookup have been patched as of the latest data update. Always keep the plugin updated to the latest version.

Is WP Tech Lookup compatible with WordPress 6.4.8?

According to WordPress.org data, WP Tech Lookup 1.1 has been tested up to WordPress 6.4.8. Check the plugin's changelog for the latest compatibility information.

Is WP Tech Lookup compatible with PHP 7.4+?

WP Tech Lookup requires PHP 7.4 or higher. Most modern WordPress hosts run PHP 8.1 or 8.2. If you are on an older PHP version, consider upgrading before installing this plugin.

How often is WP Tech Lookup updated?

WP Tech Lookup was last updated on Mar 8, 2024. Frequent updates are generally a positive security signal.

What is WP Tech Lookup's security score?

WP Tech Lookup has a WP-Safety security score of 85/100. This score is computed from CVE history, patch response time, developer trust signals, and plugin maintenance activity.

WP Tech Lookup Security & Risk Analysis

wordpress.org/plugins/wp-tech-lookup

WP Tech Lookup plugin is to see all the necessary information about server at one place.

10 active installs v1.1 PHP 7.4+ WP 4.7+ Updated Mar 8, 2024

mysql-informationphp-informationserver-informationserver-monitorwordpress-information

A · Safe

CVEs total0

Unpatched0

Last CVENever

Plugin page Download

Safety Verdict

Is WP Tech Lookup Safe to Use in 2026?

Generally Safe

Score 85/100

WP Tech Lookup has no known CVEs and is actively maintained. It's a solid choice for most WordPress installations.

No known CVEs Updated 2yr ago

Risk Assessment

The wp-tech-lookup v1.1 plugin exhibits a generally positive security posture based on the provided static analysis. It boasts a small attack surface with only two AJAX handlers, and importantly, all entry points appear to have authorization checks, which is a strong security practice. The code also demonstrates good habits by exclusively using prepared statements for its SQL queries, mitigating the risk of SQL injection. Furthermore, the absence of file operations, external HTTP requests, and bundled libraries further reduces potential attack vectors. However, a significant concern arises from the output escaping, with only 4% of outputs being properly escaped. This low percentage suggests a high risk of Cross-Site Scripting (XSS) vulnerabilities, as unsanitized output can be injected with malicious code. The lack of nonce checks on the AJAX handlers is another critical omission, leaving the plugin susceptible to Cross-Site Request Forgery (CSRF) attacks. The plugin's vulnerability history is clean, with no recorded CVEs, which is a positive indicator of its historical security, but it does not compensate for the immediate risks identified in the current code analysis.

Key Concerns

Low percentage of properly escaped output
Missing nonce checks on AJAX handlers

Vulnerabilities

None known

WP Tech Lookup Security Vulnerabilities

No known vulnerabilities — this is a good sign.

Code Analysis

Analyzed Mar 17, 2026

WP Tech Lookup Code Analysis

Dangerous Functions

Raw SQL Queries

3 prepared

Unescaped Output

1 escaped

Nonce Checks

Capability Checks

File Operations

External Requests

Bundled Libraries

SQL Query Safety

100% prepared3 total queries

Output Escaping

4% escaped27 total outputs

Attack Surface

WP Tech Lookup Attack Surface

Entry Points2

Unprotected0

AJAX Handlers 2

authwp_ajax_wtl_cron_deleteclasses\wtl-cron-info.php:27

noprivwp_ajax_wtl_cron_deleteclasses\wtl-cron-info.php:28

WordPress Hooks 2

actionadmin_menuwp-tech-lookup.php:45

actionadmin_enqueue_scriptswp-tech-lookup.php:60

Maintenance & Trust

WP Tech Lookup Maintenance & Trust

Maintenance Signals

WordPress version tested6.4.8

Last updatedMar 8, 2024

PHP min version7.4

Downloads2K

Community Trust

Rating0/100

Number of ratings0

Active installs10

Alternatives

WP Tech Lookup Alternatives

Server Info WP

server-info-wp

Easily monitor your server by watching your server usage and resources with three widgets.

30 No CVEs

Server Monitor

server-monitor

Adds three simple widgets to your WordPress Dashboard displaying fundamental info about your server and installation.

100 No CVEs

What Template Am I Using

what-template-am-i-using

This plugin is intended for theme developers to use. It shows the current template being used to render the page, current post type, and much more.

100 No CVEs

Gigaom New Relic

go-newrelic

Configures New Relic to better track performance, errors, and uptime of WordPress sites, including multisite

50 No CVEs

Hosting Monitor

hosting-monitor

Track how much disk and database space WordPress is using.

30 No CVEs

Developer Profile

WP Tech Lookup Developer Profile

Ashish Ajani

4 plugins · 3K total installs

trust score

Avg Security Score

77/100

Avg Patch Time

103 days

View full developer profile

Detection Fingerprints

How We Detect WP Tech Lookup

Patterns used to identify this plugin on WordPress sites during automated security audits and web crawling.

Asset Fingerprints

Asset Paths

/wp-content/plugins/wp-tech-lookup/css/wtl-style.css/wp-content/plugins/wp-tech-lookup/js/wtl-script.js

Script Paths

/wp-content/plugins/wp-tech-lookup/js/wtl-script.js

Version Parameters

wp-tech-lookup/css/wtl-style.css?ver=wp-tech-lookup/js/wtl-script.js?ver=

HTML / DOM Fingerprints

CSS Classes

wtl-main

FAQ