Does WT GeoTargeting have any unpatched vulnerabilities?

No. All known vulnerabilities in WT GeoTargeting have been patched as of the latest data update. Always keep the plugin updated to the latest version.

Is WT GeoTargeting compatible with WordPress 6.0.11?

According to WordPress.org data, WT GeoTargeting 1.9 has been tested up to WordPress 6.0.11. Check the plugin's changelog for the latest compatibility information.

How often is WT GeoTargeting updated?

WT GeoTargeting was last updated on Nov 26, 2022. Frequent updates are generally a positive security signal.

What is WT GeoTargeting's security score?

WT GeoTargeting has a WP-Safety security score of 85/100. This score is computed from CVE history, patch response time, developer trust signals, and plugin maintenance activity.

WT GeoTargeting Security & Risk Analysis

wordpress.org/plugins/wt-geotargeting

Гибкая настройка геотаргетинга.

1K active installs v1.9 PHP + WP 3.9+ Updated Nov 26, 2022

dadatageogeolocationgeotargetingip-api

A · Safe

CVEs total0

Unpatched0

Last CVENever

Plugin page Download

Safety Verdict

Is WT GeoTargeting Safe to Use in 2026?

Generally Safe

Score 85/100

WT GeoTargeting has no known CVEs and is actively maintained. It's a solid choice for most WordPress installations.

No known CVEs Updated 3yr ago

Risk Assessment

The wt-geotargeting plugin v1.9 exhibits a generally good security posture based on the provided static analysis and vulnerability history. The absence of known CVEs and critical taint flows is a strong positive indicator. The plugin also demonstrates good practices by using prepared statements for all SQL queries and performing capability checks, which are essential for secure WordPress development.

However, there are areas for improvement. A significant concern is the low percentage of properly escaped outputs (28%), suggesting a potential risk of Cross-Site Scripting (XSS) vulnerabilities, especially as there are 32 total outputs. While the attack surface of entry points is small (2 shortcodes) and all appear to be protected, the lack of nonce checks on these shortcodes, if they handle user-supplied data, could be a weakness. The plugin also performs file operations and external HTTP requests, which, while not inherently insecure, can introduce vulnerabilities if not handled with extreme care and input validation.

In conclusion, wt-geotargeting v1.9 has a solid foundation with secure SQL handling and capability checks. The lack of historical vulnerabilities is reassuring. The primary weaknesses lie in the insufficient output escaping and the potential for vulnerabilities related to file operations and external requests if not meticulously implemented. Addressing the output escaping is the most critical next step to bolster its security.

Key Concerns

Low percentage of properly escaped outputs
Missing nonce checks on entry points
File operations present
External HTTP requests present

Vulnerabilities

None known

WT GeoTargeting Security Vulnerabilities

No known vulnerabilities — this is a good sign.

Code Analysis

Analyzed Mar 16, 2026

WT GeoTargeting Code Analysis

Dangerous Functions

Raw SQL Queries

6 prepared

Unescaped Output

9 escaped

Nonce Checks

Capability Checks

File Operations

External Requests

Bundled Libraries

SQL Query Safety

100% prepared6 total queries

Output Escaping

28% escaped32 total outputs

Attack Surface

WT GeoTargeting Attack Surface

Entry Points2

Unprotected0

Shortcodes 2

[wt_geotargeting] includes\WtInitialization.php:24

[wt_kit] includes\WtKit.php:35

WordPress Hooks 9

actionadmin_noticesincludes\WtGeolocation.php:196

actionadmin_noticesincludes\WtGeolocation.php:218

actionadmin_noticesincludes\WtGeolocation.php:272

actionadmin_menuincludes\wt_gt_admin.php:37

filterplugin_row_metaincludes\wt_gt_admin.php:40

actionadmin_initincludes\wt_gt_admin.php:42

actionplugins_loadedwt_geotargeting.php:34

actioninitwt_geotargeting.php:35

actionadmin_enqueue_scriptswt_geotargeting.php:60

Maintenance & Trust

WT GeoTargeting Maintenance & Trust

Maintenance Signals

WordPress version tested6.0.11

Last updatedNov 26, 2022

PHP min version

Downloads24K

Community Trust

Rating92/100

Number of ratings20

Active installs1K

Alternatives

WT GeoTargeting Alternatives

belingoGeo

belingogeo

The plugin adds the ability to select cities, unique pages are created with a unique url for each city. This allows you to uniqueize content.

1K 1 CVE

GeoTargeting Lite – WordPress Geolocation

geotargeting

GeoTargeting for WordPress will let you country-target your content based on users IP's and Geocountry Ip database

1K No CVEs

If-So Geolocation

if-so-geolocation

100

All-in-one geolocation. Personalized content, geolocation Dynamic Keyword Insertion shortcodes, Rediects, and more. No coding required!

1K No CVEs

DocoDoco GeoTargeting

docodoco-geotargeting

100

サイト訪問者のアクセス元の国や企業属性に基づき、表示するコンテンツを切り替えるためのプラグインです。

10 No CVEs

SlimStat Analytics

wp-slimstat

The leading web analytics plugin for WordPress

80K 24 CVEs

Developer Profile

WT GeoTargeting Developer Profile

Roman Kusty

2 plugins · 7K total installs

trust score

Avg Security Score

85/100

Avg Patch Time

30 days

View full developer profile

Detection Fingerprints

How We Detect WT GeoTargeting

Patterns used to identify this plugin on WordPress sites during automated security audits and web crawling.

Asset Fingerprints

Asset Paths

/wp-content/plugins/wt-geotargeting/js/admin.js

Script Paths