Does Amader RSVP For WordPress have any unpatched vulnerabilities?

No. All known vulnerabilities in Amader RSVP For WordPress have been patched as of the latest data update. Always keep the plugin updated to the latest version.

Is Amader RSVP For WordPress compatible with WordPress 4.9.29?

According to WordPress.org data, Amader RSVP For WordPress 1.0.0 has been tested up to WordPress 4.9.29. Check the plugin's changelog for the latest compatibility information.

How often is Amader RSVP For WordPress updated?

Amader RSVP For WordPress was last updated on Oct 4, 2018. Frequent updates are generally a positive security signal.

What is Amader RSVP For WordPress's security score?

Amader RSVP For WordPress has a WP-Safety security score of 85/100. This score is computed from CVE history, patch response time, developer trust signals, and plugin maintenance activity.

Amader RSVP For WordPress Security & Risk Analysis

wordpress.org/plugins/amader-rsvp

Amader RSVP is an amazing wordpress plugin for RSVP. You can add a form anywhere in your website, then your guests can submit their information throug …

10 active installs v1.0.0 PHP + WP 4.0+ Updated Oct 4, 2018

A · Safe

CVEs total0

Unpatched0

Last CVENever

Plugin page Download

Safety Verdict

Is Amader RSVP For WordPress Safe to Use in 2026?

Generally Safe

Score 85/100

Amader RSVP For WordPress has no known CVEs and is actively maintained. It's a solid choice for most WordPress installations.

No known CVEs Updated 7yr ago

Risk Assessment

The "amader-rsvp" v1.0.0 plugin presents a mixed security posture. On the positive side, static analysis indicates no dangerous functions, no file operations, no external HTTP requests, and no critical or high severity taint flows. The plugin also boasts a low attack surface with only one entry point, a shortcode, and importantly, no unprotected entry points were identified. Furthermore, the vulnerability history is clean, with zero recorded CVEs, suggesting a stable and secure past.

However, several significant concerns are raised by the code analysis. The single SQL query executed by the plugin is not using prepared statements, which is a critical vulnerability risk, especially if any part of that query is dynamic. The relatively low percentage of properly escaped output (73%) also suggests a potential for cross-site scripting (XSS) vulnerabilities in the remaining 27% of output. Finally, the complete absence of nonce checks and capability checks is concerning for any plugin that handles user input or performs actions, as it leaves the door open to various forms of unauthorized actions and CSRF attacks.

Key Concerns

Raw SQL query without prepared statements
Insufficient output escaping (27% unescaped)
Missing nonce checks
Missing capability checks

Vulnerabilities

None known

Amader RSVP For WordPress Security Vulnerabilities

No known vulnerabilities — this is a good sign.

Code Analysis

Analyzed Mar 17, 2026

Amader RSVP For WordPress Code Analysis

Dangerous Functions

Raw SQL Queries

0 prepared

Unescaped Output

30 escaped

Nonce Checks

Capability Checks

File Operations

External Requests

Bundled Libraries

SQL Query Safety

0% prepared1 total queries

Output Escaping

73% escaped41 total outputs

Attack Surface

Amader RSVP For WordPress Attack Surface

Entry Points1

Unprotected0

Shortcodes 1

[amader_rsvp] src\rsvp-main.php:184

WordPress Hooks 3

actionwp_enqueue_scriptsamader-rsvp.php:23

actionadmin_enqueue_scriptsamader-rsvp.php:33

actionadmin_menuamader-rsvp.php:75

Maintenance & Trust

Amader RSVP For WordPress Maintenance & Trust

Maintenance Signals

WordPress version tested4.9.29

Last updatedOct 4, 2018

PHP min version

Downloads1K

Community Trust

Rating0/100

Number of ratings0

Active installs10

Alternatives

Amader RSVP For WordPress Alternatives

No alternatives data available yet.

Developer Profile

Amader RSVP For WordPress Developer Profile

MucaSoft

2 plugins · 20 total installs

trust score

Avg Security Score

93/100

Avg Patch Time

30 days

View full developer profile

Detection Fingerprints

How We Detect Amader RSVP For WordPress

Patterns used to identify this plugin on WordPress sites during automated security audits and web crawling.

Asset Fingerprints

Asset Paths

/wp-content/plugins/amader-rsvp/css/bootstrap/bootstrap.min.css/wp-content/plugins/amader-rsvp/css/style.css/wp-content/plugins/amader-rsvp/css/font-awesome/font-awesome.min.css/wp-content/plugins/amader-rsvp/js/bootstrap.min.js/wp-content/plugins/amader-rsvp/css/admin/style.css

Script Paths

/wp-content/plugins/amader-rsvp/js/bootstrap.min.js

HTML / DOM Fingerprints

CSS Classes

form-wrapperthead-darktable

HTML Comments

Shortcode Output

<p>Sorry, no RSVP found in the database. <br/> Please use <strong>[amader_rsvp]</strong> in any page to show RSVP form in your website.</p>

FAQ