Plugin inspection:

GD Security Headers

Use with caution

Last revised:

Confidence: Medium
This plugin has been given a short, targeted code review.

Before using this plugin, you should carefully consider these findings. Read more about this recommendation.


The plugin includes a substantial library of generic classes, much of which goes unused by this specific plugin.

The plugin logs user’s IP addresses in certain configs, which could be a data protection issue in some contexts.

Some SQL SELECT queries which do not involve user-controlled data are run unprepared.

Reason for the 'Use with caution' result

The plugin has been given this recommendation at the tester's discretion:

At over 10,000 lines of PHP this is a very large plugin, which makes it difficult to thoroughly assess.

Failure criteria

  • Execution of unprepared SQL statements
  • Very large codebase

Read more about our failure criteria.