Injection Guard
This plugin blocks all unauthorized and irrelevant requests through query strings and provides extended session tracking and capability audit.
5(4 reviews)
·1.0K+ active installs·Updated 2 weeks agoAs of April 2026, Injection Guard is a WordPress firewall plugin with 1.0K+ active installations and a 5/5 rating from 4 reviews. It has been downloaded 33K+ times in total. Requires WordPress 3.0+ and PHP 7.0+. Available on WordPress.org since 2014. Actively maintained — updated within the last month. Downloads are down 26% this week. Top alternative: Wordfence Security – Firewall, Malware….
5/54 reviews
1.0K+active installs
33K+total downloads
12 yearssince 2014
Overview
Author: Fahad Mahmood
Project URI: https://www.androidbubbles.com/extends/wordpress/plugins/injection-guard
License: GPL v3
Injection Guard is a WordPress plugin designed to block malicious query string attacks and suspicious URL parameters. It logs all incoming attempts, blocks harmful parameters, and adds extra security intelligence to your WordPress admin—like user session tracking and capability audit.
The plugin uses the ig_ prefix for database keys and functions, follows WordPress coding standards, and supports multiple languages. It’s compatible with pretty permalinks and helps in securing your site from automated bots and manual attacks.
Method A (Admin Panel)
- Login to WordPress Admin > Plugins > Add New > Upload Plugin
- Upload the ZIP file and activate the plugin
- G…
Screenshots
Ratings & Reviews
54 reviews
5 ★
4
4 ★
0
3 ★
0
2 ★
0
1 ★
0
Recent Reviews
Removes Headaches to Beginners
by DoctorMason·4 years ago
Injection Guard with Wordfence allows me to sleep and not worry. Don’t even have to check all of the reported links. Along with articles about security in wp-config this beginner is extremely satisfied with the Injection Guard plugin.
A good tool to keep an eye on
by Fahad Mahmood·9 years ago
Using this plugin, you can check the query variables which are incoming to your website for injection purpose.
i like it.
by 8761827639·10 years ago
yeah it’s good – had been searching for a solution like this for quite a while, provides good security without breaking your site. would recommend. definitely worth a $15 donation to make up for removal of stress and headaches.
excellent
by lejurassien·11 years ago
Très bon plugin,conjugué avec d’autres et un bon htacces et c’est 99% de merde en moins!!
Merci pour ton travail Fahad Mahmood!
Download Trends
Today: 21Yesterday: 21This week: 136Period total: 6K
Compatibility
| WordPress | 3.0+ requiredTested up to 6.9.4 |
| PHP | 7.0+ required |
Version Adoption
v1.2
55.3%
v1.3
36.4%
v1.1
8.3%
Top Alternatives to Injection Guard
Frequently Asked Questions
Changelog
1.3.0
- Security: Fixed Stored XSS vulnerability by sanitizing query parameter keys, escaping admin output, improving query handling, and adding a log size limit. [Thanks to Wordfence / 15/03/2026 / Aramsri (Boeing777)].
Contributors
Plugin data sourced from WordPress.org. Analysis and metrics by PluginSift.