Does WP Viewer Log have any unpatched vulnerabilities?

No. All known vulnerabilities in WP Viewer Log have been patched as of the latest data update. Always keep the plugin updated to the latest version.

Is WP Viewer Log compatible with WordPress 4.8.28?

According to WordPress.org data, WP Viewer Log 2.0.2 has been tested up to WordPress 4.8.28. Check the plugin's changelog for the latest compatibility information.

How often is WP Viewer Log updated?

WP Viewer Log was last updated on Jul 16, 2017. Frequent updates are generally a positive security signal.

What is WP Viewer Log's security score?

WP Viewer Log has a WP-Safety security score of 85/100. This score is computed from CVE history, patch response time, developer trust signals, and plugin maintenance activity.

WP Viewer Log Security & Risk Analysis

wordpress.org/plugins/wp-viewer-log

Lets see how many errors have had in the present day through a widget, configure your wp-config.php and see the file log.

10 active installs v2.0.2 PHP + WP 3.3+ Updated Jul 16, 2017

configdebugerrorlogphp

A · Safe

CVEs total0

Unpatched0

Last CVENever

Plugin page Download

Safety Verdict

Is WP Viewer Log Safe to Use in 2026?

Generally Safe

Score 85/100

WP Viewer Log has no known CVEs and is actively maintained. It's a solid choice for most WordPress installations.

No known CVEs Updated 8yr ago

Risk Assessment

The "wp-viewer-log" v2.0.2 plugin exhibits a generally positive security posture, with no reported vulnerabilities or critical code signals. The absence of AJAX handlers, REST API routes, shortcodes, and cron events significantly limits its attack surface. Furthermore, all detected SQL queries are properly prepared, and there are no external HTTP requests or taint flows suggesting inherent risks within the code's data handling.

However, there are some areas for improvement. The plugin has a relatively high number of file operations (9) which, combined with a low output escaping rate (30%), could potentially lead to vulnerabilities if sensitive data is not handled securely during these operations. The complete lack of nonce checks and capability checks is also a concern, as it implies that any code with access to these file operations could potentially trigger them without proper authorization checks, opening up avenues for privilege escalation or unauthorized actions if the file operations themselves are exploitable.

Given the clean vulnerability history and the absence of critical code signals, the plugin appears to be developed with security in mind. However, the identified weaknesses in output escaping and the absence of authorization checks on file operations warrant attention. Addressing these would further strengthen the plugin's security, especially as the number of file operations is considerable.

Key Concerns

Low output escaping rate
No nonce checks
No capability checks

Vulnerabilities

None known

WP Viewer Log Security Vulnerabilities

No known vulnerabilities — this is a good sign.

Code Analysis

Analyzed Mar 17, 2026

WP Viewer Log Code Analysis

Dangerous Functions

Raw SQL Queries

0 prepared

Unescaped Output

3 escaped

Nonce Checks

Capability Checks

File Operations

External Requests

Bundled Libraries

Output Escaping

30% escaped10 total outputs

Attack Surface

WP Viewer Log Attack Surface

Entry Points0

Unprotected0

WordPress Hooks 11

actioninitwp-viewer-log.php:111

actionadmin_initwp-viewer-log.php:115

actionadmin_menuwp-viewer-log.php:116

actionadmin_bar_menuwp-viewer-log.php:117

actionadmin_enqueue_scriptswp-viewer-log.php:118

filterplugin_action_linkswp-viewer-log.php:120

actionwp_dashboard_setupwp-viewer-log.php:134

actionwp_network_dashboard_setupwp-viewer-log.php:135

actionadmin_noticeswp-viewer-log.php:207

actionadmin_noticeswp-viewer-log.php:271

actionplugins_loadedwp-viewer-log.php:541

Maintenance & Trust

WP Viewer Log Maintenance & Trust

Maintenance Signals

WordPress version tested4.8.28

Last updatedJul 16, 2017

PHP min version

Downloads3K

Community Trust

Rating0/100

Number of ratings0

Active installs10

Alternatives

WP Viewer Log Alternatives

Error Log Viewer by BestWebSoft

error-log-viewer

Get latest error log messages to diagnose website problems. Define and fix issues faster.

6K 5 CVEs

BugFu Console Debugger

bugfu-console-debugger

Log/Debug the PHP code in your Theme/Plugin with your Browser Console (no extension needed)

300 No CVEs

BugTrace – Debug Log Tool

debug-log-tool

100

Essential WordPress debug tool: View/download logs, toggle debug settings & inspect server info. Troubleshoot PHP errors & site issues faster!

40 No CVEs

LH Javascript Error log

lh-javascript-error-log

100

Log Javascript errors from your browser to your wordpress error log.

10 No CVEs

All-in-One Debug Lab

all-in-one-debug-lab

The "All-in-One Debug Lab" plugin, makes it easy to search and locate errors in wordpress.

0 No CVEs

Developer Profile

WP Viewer Log Developer Profile

Sergio

4 plugins · 10K total installs

trust score

Avg Security Score

85/100

Avg Patch Time

30 days

View full developer profile

Detection Fingerprints

How We Detect WP Viewer Log

Patterns used to identify this plugin on WordPress sites during automated security audits and web crawling.

Asset Fingerprints

Asset Paths

/wp-content/plugins/wp-viewer-log/assets/css/wpvl-styles.css/wp-content/plugins/wp-viewer-log/assets/javascript/jquery.wpvl.min.js

Script Paths

/wp-content/plugins/wp-viewer-log/assets/javascript/jquery.wpvl.min.js

Version Parameters

wp-viewer-log/assets/css/wpvl-styles.css?ver=wp-viewer-log/assets/javascript/jquery.wpvl.min.js?ver=

HTML / DOM Fingerprints

CSS Classes

wpvl-node

HTML Comments

Data Attributes

data-wpvl-log-filenamedata-wpvl-log-pathdata-wpvl-log-sizedata-wpvl-log-clear

FAQ