WP-Safety

Beamer – newsfeed and push notifications Security & Risk Analysis

wordpress.org/plugins/beamer

Beamer is a smart and easy-to-use notification center and changelog that will help you announce important news, latest products, special offers and mo …

200 active installs v5.3 PHP 5.4+ WP 4.7+ Updated Sep 20, 2023
changelognewsnewsfeednotificationspush-notifications
85
A · Safe
CVEs total0
Unpatched0
Last CVENever
Plugin page Download
Safety Verdict

Is Beamer – newsfeed and push notifications Safe to Use in 2026?

Generally Safe

Score 85/100

Beamer – newsfeed and push notifications has no known CVEs and is actively maintained. It's a solid choice for most WordPress installations.

No known CVEs Updated 2yr ago
Risk Assessment

The 'beamer' plugin version 5.3 exhibits a generally positive security posture based on the provided static analysis. It successfully avoids common vulnerabilities such as SQL injection by exclusively using prepared statements and has no identified critical or high-severity taint flows. Furthermore, the absence of known CVEs and a history of vulnerabilities suggests diligent development and maintenance practices. The plugin also demonstrates good security hygiene with the presence of nonce and capability checks for its limited entry points, which is a strength.

However, a notable concern arises from the output escaping analysis. With 51% of its 83 total outputs not properly escaped, there is a significant risk of Cross-Site Scripting (XSS) vulnerabilities. While the attack surface appears minimal with no direct AJAX handlers, REST API routes, or shortcodes exposed without authentication, the unescaped output represents a tangible threat that could be exploited if an attacker can trigger the rendering of vulnerable output. The presence of external HTTP requests also warrants attention, as these could potentially be manipulated or lead to unintended data exposure if not handled with extreme care.

Key Concerns

  • Significant portion of outputs not properly escaped
  • External HTTP requests present
Vulnerabilities
None known

Beamer – newsfeed and push notifications Security Vulnerabilities

No known vulnerabilities — this is a good sign.
Version History

Beamer – newsfeed and push notifications Release Timeline

No version history available.
Code Analysis
Analyzed Mar 16, 2026

Beamer – newsfeed and push notifications Code Analysis

Dangerous Functions
0
Raw SQL Queries
0
0 prepared
Unescaped Output
41
42 escaped
Nonce Checks
1
Capability Checks
1
File Operations
0
External Requests
3
Bundled Libraries
0

Output Escaping

51% escaped83 total outputs
Attack Surface

Beamer – newsfeed and push notifications Attack Surface

Entry Points0
Unprotected0
WordPress Hooks 15
actionadmin_enqueue_scriptsbeamer-api-metabox.php:17
actionadmin_enqueue_scriptsbeamer-api-metabox.php:25
actionadd_meta_boxesbeamer-api-metabox.php:72
actionpost_updatedbeamer-api-metabox.php:220
actionpost_updatedbeamer-api.php:368
actionadmin_menubeamer-settings.php:14
actionadmin_initbeamer-settings.php:15
actionadmin_enqueue_scriptsindex.php:107
actionadmin_initindex.php:302
actionwp_headindex.php:335
actionwp_enqueue_scriptsindex.php:429
filterscript_loader_tagindex.php:438
actionupdate_option_beamer_settings_option_nameindex.php:484
actionadmin_noticesindex.php:502
actionadmin_noticesindex.php:536
Maintenance & Trust

Beamer – newsfeed and push notifications Maintenance & Trust

Maintenance Signals

WordPress version tested6.2.9
Last updatedSep 20, 2023
PHP min version5.4
Downloads30K

Community Trust

Rating94/100
Number of ratings15
Active installs200
Alternatives

Beamer – newsfeed and push notifications Alternatives

Pushnews

Pushnews

pushnews

A
100

Increase your website traffic with Pushnews Web Push Notifications.

100 No CVEs
OneSignal – Web Push Notifications

OneSignal – Web Push Notifications

onesignal-free-web-push-notifications

A
97

Increase engagement and drive more repeat traffic to your WordPress site with push notifications. Now a WordPress VIP Gold Partner.

70K 3 CVEs
PushEngage – Web Push Notifications, WooCommerce Automation & Chat Widget

PushEngage – Web Push Notifications, WooCommerce Automation & Chat Widget

pushengage

A
100

The #1 push notification plugin for WordPress & WooCommerce. Recover abandoned carts, automate alerts, and grow subscribers — no code needed.

10K No CVEs
Web Push Notifications – Webpushr

Web Push Notifications – Webpushr

webpushr-web-push-notifications

A
92

Fastest growing & lightweight plugin for Web Push Notifications. Add browser push notifications to your WordPress & WooCommerce site.

10K 4 CVEs
Push Notifications by LaraPush

Push Notifications by LaraPush

push-notifications-by-larapush

A
100

LaraPush's "Push Notifications" is a premium add-on exclusively available for the larapush pro panel. With this add-on, users can easil …

6K No CVEs
Developer Profile

Beamer – newsfeed and push notifications Developer Profile

Beamer

1 plugin · 200 total installs

84
trust score
Avg Security Score
85/100
Avg Patch Time
30 days
View full developer profile
Detection Fingerprints

How We Detect Beamer – newsfeed and push notifications

Patterns used to identify this plugin on WordPress sites during automated security audits and web crawling.

Asset Fingerprints

Asset Paths
/wp-content/plugins/beamer/css/beamer-admin.css
Version Parameters
beamer/css/beamer-admin.css?ver=

HTML / DOM Fingerprints

CSS Classes
beamer-widget-container
HTML Comments
BEAMER VERSIONLOG TOOLBEAMER URLsCHECK CURRENT SCREEN+11 more
Data Attributes
data-beamer-product-iddata-beamer-selectordata-beamer-position-topdata-beamer-position-rightdata-beamer-position-bottomdata-beamer-position-left+16 more
JS Globals
BeamerWidget
REST Endpoints
/wp-json/beamer/v1/widget
Shortcode Output
[beamer]
FAQ

Frequently Asked Questions about Beamer – newsfeed and push notifications