Activation Add-on for GamiPress Security & Risk Analysis
wordpress.org/plugins/activation-add-on-for-gamipressThis GamiPress add-on adds a global switch in the Backend where the awarding of badges can be enabled and disabled.
Is Activation Add-on for GamiPress Safe to Use in 2026?
Generally Safe
Score 85/100Activation Add-on for GamiPress has no known CVEs and is actively maintained. It's a solid choice for most WordPress installations.
The static analysis of 'activation-add-on-for-gamipress' v1.0.0 reveals a plugin with a remarkably small attack surface, reporting zero entry points. This is a strong indicator of good development practices in terms of limiting exposure. Furthermore, the absence of dangerous functions, file operations, external HTTP requests, and the use of prepared statements for all SQL queries are positive signs. However, a significant concern arises from the complete lack of output escaping for the two identified outputs. This suggests a potential for Cross-Site Scripting (XSS) vulnerabilities if the data being output is not sufficiently sanitized before insertion. The lack of nonce and capability checks on any potential entry points (though none were identified) is also a weakness, as it implies that if new entry points were added or discovered, they might lack essential authentication and authorization measures. The plugin's vulnerability history is clean, with no recorded CVEs, which is reassuring. This, combined with the limited attack surface, suggests a generally well-maintained codebase. The primary risk lies in the unescaped output, which should be addressed to prevent potential XSS attacks.
Key Concerns
- Unescaped output detected
- Missing nonce checks
- Missing capability checks
Activation Add-on for GamiPress Security Vulnerabilities
Activation Add-on for GamiPress Code Analysis
Output Escaping
Activation Add-on for GamiPress Attack Surface
WordPress Hooks 8
Maintenance & Trust
Activation Add-on for GamiPress Maintenance & Trust
Maintenance Signals
Community Trust
Activation Add-on for GamiPress Alternatives
BadgeOS Community Add-on
badgeos-community-add-on
Adds BadgeOS features to BuddyPress and bbPress. Earn badges/points/ranks based on community activity, and display them on user profiles and activity …
BadgeOS Invite Codes Add-on
badgeos-invite-codes-add-on
Enhances sites running BuddyPress and BadgeOS by joining users to one or more specified groups when they use a special Invite Code to join your site.
Open Badges Issuer Add-on
badgeos-open-badges-issuer-add-on
Issue Mozilla Open Badges directly from your site with this add-on for BadgeOS
BadgeOS Suggested Achievements Add-on
badgeos-suggested-achievements-add-on
Enhances sites running BuddyPress and BadgeOS by suggesting next possible incomplete achievements that a user can earn.
Credly Custom Badge Assertion Shortcode
credly-pro-custom-assertion
Easily create an official Credly Badge Assertion page on your site.
Activation Add-on for GamiPress Developer Profile
10 plugins · 70 total installs
How We Detect Activation Add-on for GamiPress
Patterns used to identify this plugin on WordPress sites during automated security audits and web crawling.
Asset Fingerprints
/wp-content/plugins/gamipress-activation-addon/css/admin.css/wp-content/plugins/gamipress-activation-addon/js/admin.js/wp-content/plugins/gamipress-activation-addon/js/admin.jsgamipress-activation-addon/css/admin.css?ver=gamipress-activation-addon/js/admin.js?ver=HTML / DOM Fingerprints
gamipress-activation-addon-settingsdata-gamipress-activation-addon-settingsgamipress_activation_addon_params