Award On Click Add-On for GamiPress Security & Risk Analysis
wordpress.org/plugins/award-on-click-for-gamipressThis GamiPress Add-on adds a shortcode to show a link. The user is awarded a specified achievement when the link is clicked.
Is Award On Click Add-On for GamiPress Safe to Use in 2026?
Generally Safe
Score 85/100Award On Click Add-On for GamiPress has no known CVEs and is actively maintained. It's a solid choice for most WordPress installations.
The "award-on-click-for-gamipress" plugin v1.0.0 exhibits a strong security posture based on the provided static analysis. The absence of dangerous functions, SQL queries without prepared statements, file operations, and external HTTP requests, along with a complete lack of critical or high-severity taint flows, are all positive indicators. The presence of a nonce check is also commendable.
However, a significant concern arises from the output escaping. With only 33% of the total 9 outputs properly escaped, there is a high likelihood of Cross-Site Scripting (XSS) vulnerabilities. This is a critical area of weakness that attackers could exploit to inject malicious scripts into the WordPress site.
The plugin's vulnerability history is clean, with no recorded CVEs. This, combined with the strong code signals in most areas, suggests a conscientious development approach. Nevertheless, the identified output escaping issue needs immediate attention to mitigate potential XSS risks.
Key Concerns
- Low percentage of properly escaped output
Award On Click Add-On for GamiPress Security Vulnerabilities
Award On Click Add-On for GamiPress Code Analysis
Output Escaping
Data Flow Analysis
Award On Click Add-On for GamiPress Attack Surface
WordPress Hooks 5
Maintenance & Trust
Award On Click Add-On for GamiPress Maintenance & Trust
Maintenance Signals
Community Trust
Award On Click Add-On for GamiPress Alternatives
Achievement Shortcode Add-On for GamiPress
achievement-shortcode-add-on-for-gamipress
This GamiPress Add-on adds a shortcode to show or hide content depending on the user having earned a specific achievement.
Achievement Shortcode Add-On for BadgeOS
achievement-shortcode-for-badgeos
This BadgeOS Add-on adds a shortcode to show or hide content depending on the user having earned a specific achievement.
Award On Click Add-On for BadgeOS
award-on-click-add-on-for-badgeos
This BadgeOS Add-on adds a shortcode to show a link. The user is awarded a specified achievement when the link is clicked.
Code School Badges
code-school-badges
Provides both widgets and shortcodes to help display Code School profile badges on your website.
Advanced Access Manager – Access Governance for WordPress
advanced-access-manager
Access Governance for WordPress. Control roles, users, content, admin areas, and APIs to prevent broken access controls and excessive privileges.
Award On Click Add-On for GamiPress Developer Profile
10 plugins · 70 total installs
How We Detect Award On Click Add-On for GamiPress
Patterns used to identify this plugin on WordPress sites during automated security audits and web crawling.
Asset Fingerprints
/wp-content/plugins/award-on-click-for-gamipress/js/rangyinputs-jquery-src.js/wp-content/plugins/award-on-click-for-gamipress/js/award-on-click-embed.js/wp-content/plugins/award-on-click-for-gamipress/js/rangyinputs-jquery-src.js/wp-content/plugins/award-on-click-for-gamipress/js/award-on-click-embed.jsHTML / DOM Fingerprints
data-post-typedata-placeholder<a id='award_on_click_The ID of the achievement the user earns.The address of the link.The title of the link.