Title: Please improve plugin security
Last modified: May 30, 2025

---

# Please improve plugin security

 *  Resolved [Alexandru Negoita](https://wordpress.org/support/users/kulsite/)
 * (@kulsite)
 * [1 year ago](https://wordpress.org/support/topic/please-improve-plugin-security/)
 * Hei,
   I just tested the plugin through WordPress standards and it seems that there
   are issues that needs to be fixed.There are unescaped values in the plugin which
   can pose a threat to the site security, even when the plugin is only used in 
   admin interface.For example:$where[] .= ‘`object_type` = \'' . $type . '\'';Combined
   with _roles values, which can also have allot of various data, it could potentially
   lead to escalated privileges.

Viewing 1 replies (of 1 total)

 *  Plugin Author [ArielK](https://wordpress.org/support/users/arielk-1/)
 * (@arielk-1)
 * [1 year ago](https://wordpress.org/support/topic/please-improve-plugin-security/#post-18490840)
 * Hi [@kulsite](https://wordpress.org/support/users/kulsite/),
 * Thank you for researching our plugin!
 * To better serve the researcher community, we’re running a managed public Bug 
   Bounty program on Patchstack: [https://patchstack.com/database/wordpress/plugin/aryo-activity-log](https://patchstack.com/database/wordpress/plugin/aryo-activity-log)
 * Please open a Patchstack account if you don’t already have one, join our program
   and submit your findings.
 * The program contains all the information you’ll need in order to submit a report.
 * Best regards,

Viewing 1 replies (of 1 total)

The topic ‘Please improve plugin security’ is closed to new replies.

 * ![](https://ps.w.org/aryo-activity-log/assets/icon-256x256.png?rev=1944199)
 * [Activity Log - Monitor & Record User Changes](https://wordpress.org/plugins/aryo-activity-log/)
 * [Frequently Asked Questions](https://wordpress.org/plugins/aryo-activity-log/#faq)
 * [Support Threads](https://wordpress.org/support/plugin/aryo-activity-log/)
 * [Active Topics](https://wordpress.org/support/plugin/aryo-activity-log/active/)
 * [Unresolved Topics](https://wordpress.org/support/plugin/aryo-activity-log/unresolved/)
 * [Reviews](https://wordpress.org/support/plugin/aryo-activity-log/reviews/)

 * 2 replies
 * 2 participants
 * Last reply from: [ArielK](https://wordpress.org/support/users/arielk-1/)
 * Last activity: [1 year ago](https://wordpress.org/support/topic/please-improve-plugin-security/#post-18490840)
 * Status: resolved