Does Bens Email Marketing & Automation have any unpatched vulnerabilities?

No published vulnerabilities and no findings under coordinated disclosure as of the latest data update. Always keep the plugin updated to the latest version.

Is Bens Email Marketing & Automation compatible with WordPress 6.8.5?

According to WordPress.org data, Bens Email Marketing & Automation 1.0.26 has been tested up to WordPress 6.8.5. Check the plugin's changelog for the latest compatibility information.

Is Bens Email Marketing & Automation compatible with PHP 7.4+?

Bens Email Marketing & Automation requires PHP 7.4 or higher. Most modern WordPress hosts run PHP 8.1 or 8.2. If you are on an older PHP version, consider upgrading before installing this plugin.

How often is Bens Email Marketing & Automation updated?

Bens Email Marketing & Automation was last updated on Apr 16, 2026. Frequent updates are generally a positive security signal.

What is Bens Email Marketing & Automation's security score?

Bens Email Marketing & Automation has a WP-Safety security score of 100/100. This score is computed from CVE history, patch response time, developer trust signals, and plugin maintenance activity.

Bens Email Marketing & Automation Security & Risk Analysis

wordpress.org/plugins/bens-email-marketing-automation

Fast and simple Email Marketing, Newsletters, Automation & CRM for WordPress.

0 active installs v1.0.26 PHP 7.4+ WP 6.0+ Updated Apr 16, 2026

email-campaignsemail-marketingnewsletter

A · Safe

CVEs total0

Unpatched0

Last CVENever

Plugin page Download

Safety Verdict

Is Bens Email Marketing & Automation Safe to Use in 2026?

Generally Safe

Score 100/100

Bens Email Marketing & Automation has no known CVEs and is actively maintained. It's a solid choice for most WordPress installations.

No known CVEs Updated 29d ago

Risk Assessment

The "bens-email-marketing-automation" plugin v1.0.19 presents a mixed security posture. While the plugin boasts a clean vulnerability history with no recorded CVEs, indicating potential good development practices or infrequent security audits, the static analysis reveals areas of concern. A significant attack surface exists with 42 AJAX handlers, and critically, 4 of these lack proper authentication checks. This opens the door for unauthenticated attackers to trigger potentially harmful actions. Furthermore, the plugin exclusively uses raw SQL queries without prepared statements, posing a risk of SQL injection vulnerabilities. Although taint analysis shows no critical or high-severity unsanitized paths, the presence of 6 flows with unsanitized paths warrants attention, especially in conjunction with the lack of prepared statements.

Key Concerns

AJAX handlers without authentication checks
SQL queries without prepared statements
Flows with unsanitized paths

Vulnerabilities

None known

Bens Email Marketing & Automation Security Vulnerabilities

No known vulnerabilities — this is a good sign.

Version History

Bens Email Marketing & Automation Release Timeline

v1.0.25

v1.0.24

v1.0.23

v1.0.22

v1.0.21

v1.0.20

v1.0.19

v1.0.18

v1.0.17

v1.0.16

v1.0.15

v1.0.14

v1.0.13

v1.0.12

v1.0.11

v1.0.10

v1.0.9

v1.0.8

v1.0.6

v1.0.5

Code Analysis

Analyzed Mar 17, 2026

Bens Email Marketing & Automation Code Analysis

Dangerous Functions

Raw SQL Queries

0 prepared

Unescaped Output

332

733 escaped

Nonce Checks

Capability Checks

File Operations

External Requests

Bundled Libraries

Select2

SQL Query Safety

0% prepared1 total queries

Output Escaping

69% escaped1065 total outputs

Data Flows · Security

6 unsanitized

Data Flow Analysis

9 flows6 with unsanitized paths

search_box (core\modules\campaigns\table.php:16)

Source (user input) Sink (dangerous op) Sanitizer Transform Unsanitized Sanitized

Attack Surface

4 unprotected

Bens Email Marketing & Automation Attack Surface

Entry Points43

Unprotected4

AJAX Handlers 42

authwp_ajax_bensemma_save_settingscore\admin\settings\ajax.php:13

authwp_ajax_mh_save_global_settingscore\admin\settings\ajax.php:14

authwp_ajax_mh_get_global_settingscore\admin\settings\ajax.php:15

authwp_ajax_bensemma_save_custom_fieldcore\admin\settings\ajax.php:16

authwp_ajax_bensemma_get_custom_fieldcore\admin\settings\ajax.php:17

authwp_ajax_bensemma_delete_custom_fieldcore\admin\settings\ajax.php:18

authwp_ajax_bensemma_get_all_custom_fieldscore\admin\settings\ajax.php:19

authwp_ajax_bensemma_create_campaigncore\modules\campaigns\campaigns.php:17

authwp_ajax_bensemma_delete_campaigncore\modules\campaigns\campaigns.php:18

authwp_ajax_bensemma_save_campaign_emailcore\modules\campaigns\campaigns.php:19

authwp_ajax_bensemma_save_campaign_subjectcore\modules\campaigns\campaigns.php:20

authwp_ajax_bensemma_save_campaign_recipientscore\modules\campaigns\campaigns.php:21

authwp_ajax_bensemma_send_test_emailcore\modules\campaigns\campaigns.php:22

authwp_ajax_bensemma_save_campaign_schedulecore\modules\campaigns\campaigns.php:23

authwp_ajax_bensemma_send_campaign_nowcore\modules\campaigns\campaigns.php:24

authwp_ajax_bensemma_create_contactcore\modules\contacts\contacts.php:20

authwp_ajax_bensemma_delete_contactcore\modules\contacts\contacts.php:21

authwp_ajax_bensemma_get_contactscore\modules\contacts\contacts.php:22

authwp_ajax_bensemma_get_contactcore\modules\contacts\contacts.php:23

authwp_ajax_bensemma_get_all_listscore\modules\contacts\contacts.php:24

authwp_ajax_bensemma_get_all_tagscore\modules\contacts\contacts.php:25

authwp_ajax_mh_import_contactscore\modules\contacts\contacts.php:27

authwp_ajax_mh_get_user_rolescore\modules\contacts\contacts.php:28

authwp_ajax_bensemma_get_custom_fieldscore\modules\contacts\contacts.php:30

authwp_ajax_bensemma_check_pro_statuscore\modules\contacts\contacts.php:31

authwp_ajax_mh_get_total_subscribed_countcore\modules\contacts\contacts.php:33

authwp_ajax_bensemma_srv_get_email_templatescore\modules\email-templates\email-templates-admin-page.php:23

authwp_ajax_bensemma_srv_save_templatecore\modules\email-templates\email-templates-admin-page.php:24

authwp_ajax_bensemma_srv_delete_templatecore\modules\email-templates\email-templates-admin-page.php:25

authwp_ajax_bensemma_create_email_templatecore\modules\email-templates\email-templates.php:16

authwp_ajax_bensemma_delete_email_templatecore\modules\email-templates\email-templates.php:17

authwp_ajax_bensemma_update_email_templatecore\modules\email-templates\email-templates.php:18

authwp_ajax_bensemma_get_email_templatescore\modules\email-templates\email-templates.php:19

authwp_ajax_bensemma_get_email_template_by_idcore\modules\email-templates\email-templates.php:20

authwp_ajax_mh_ajax_search_templatescore\modules\email-templates\email-templates.php:22

authwp_ajax_mh_preview_templatecore\modules\email-templates\email-templates.php:23

authwp_ajax_bensemma_create_listcore\modules\lists\lists.php:25

authwp_ajax_bensemma_delete_listcore\modules\lists\lists.php:26

authwp_ajax_bensemma_get_listscore\modules\lists\lists.php:27

authwp_ajax_bensemma_create_tagcore\modules\tags\tags.php:27

authwp_ajax_bensemma_delete_tagcore\modules\tags\tags.php:28

authwp_ajax_bensemma_get_tags_listcore\modules\tags\tags.php:29

REST API Routes 1

GET/wp-json/mh/v1/email-contentcore\modules\campaigns\blocks\email-blocks.php:29

WordPress Hooks 30

actionadmin_enqueue_scriptsbase\enqueue.php:21

actionwp_enqueue_scriptsbase\enqueue.php:23

actionplugins_loadedbens-email-marketing-automation.php:68

actionadmin_noticesbens-email-marketing-automation.php:117

actionadmin_menucore\admin\menus.php:27

actionadmin_menucore\admin\menus.php:28

actionadmin_enqueue_scriptscore\modules\campaigns\blocks\email-blocks.php:23

actionafter_setup_themecore\modules\campaigns\blocks\email-blocks.php:24

actionrest_api_initcore\modules\campaigns\blocks\email-blocks.php:25

actionbensemma_send_campaign_scheduledcore\modules\campaigns\campaigns.php:28

actionadmin_enqueue_scriptscore\modules\contacts\contacts.php:18

actionadmin_initcore\modules\contacts\contacts.php:35

actionadmin_noticescore\modules\contacts\contacts.php:37

actioninitcore\modules\contacts\contacts.php:41

actioninitcore\modules\contacts\contacts.php:44

actioninitcore\modules\contacts\contacts.php:47

actionadmin_enqueue_scriptscore\modules\email-templates\email-templates-admin-page.php:22

actioninitcore\modules\email-templates\email-templates.php:27

actionadmin_menucore\modules\lists\lists.php:21

actionadmin_enqueue_scriptscore\modules\lists\lists.php:22

actionadmin_initcore\modules\lists\lists.php:29

actionadmin_noticescore\modules\lists\lists.php:31

actioninitcore\modules\lists\lists.php:44

actionuser_registercore\modules\models.php:13

actiondelete_usercore\modules\models.php:20

actionadmin_menucore\modules\tags\tags.php:23

actionadmin_enqueue_scriptscore\modules\tags\tags.php:24

actionadmin_initcore\modules\tags\tags.php:32

actionadmin_noticescore\modules\tags\tags.php:34

actioninitcore\modules\tags\tags.php:38

Scheduled Events 1

bensemma_send_campaign_scheduled

Maintenance & Trust

Bens Email Marketing & Automation Maintenance & Trust

Maintenance Signals

WordPress version tested6.8.5

Last updatedApr 16, 2026

PHP min version7.4

Downloads1K

Community Trust

Rating0/100

Number of ratings0

Active installs0

Alternatives

Bens Email Marketing & Automation Alternatives

Email Marketing for WordPress and WooCommerce – Retainful

retainful

100

Email marketing, newsletters for WordPress and WooCommerce. Send newsletters and campaigns, recover abandoned carts, signup forms, and more

200 No CVEs

Hostinger Reach – AI-Powered Email Marketing for WordPress

hostinger-reach

Launch and grow your email marketing effortlessly with Hostinger Reach. Collect contacts, sync subscribers, and send emails – all in one, AI powered.

1.0M 1 CVE

MailPoet – Newsletters, Email Marketing, and Automation

mailpoet

Send beautiful newsletters from WordPress. Collect subscribers with signup forms, automate your emails for WooCommerce, blog post notifications & more

500K 3 CVEs

Newsletter – Send awesome emails from WordPress

newsletter

An email marketing tool for your blog: subscription forms to create your lists with unlimited subscribers and newsletters.

200K 20 CVEs

Brevo – Email, SMS, Web Push, Chat, and more.

mailin

Turn your WordPress site into a marketing powerhouse. Grow your audience, boost engagement, and drive more sales with Brevo.

100K 9 CVEs

Developer Profile

Bens Email Marketing & Automation Developer Profile

Wpbens

5 plugins · 150 total installs

trust score

Avg Security Score

95/100

Avg Patch Time

1 days

View full developer profile

Detection Fingerprints

How We Detect Bens Email Marketing & Automation

Patterns used to identify this plugin on WordPress sites during automated security audits and web crawling.

Asset Fingerprints

Asset Paths

/wp-content/plugins/bens-email-marketing-automation/autoloader.php/wp-content/plugins/bens-email-marketing-automation/wrapper.php/wp-content/plugins/bens-email-marketing-automation/assets/js/admin.js/wp-content/plugins/bens-email-marketing-automation/assets/js/bensemma-select2.min.js/wp-content/plugins/bens-email-marketing-automation/assets/js/bensemma-chart.js/wp-content/plugins/bens-email-marketing-automation/assets/js/bensemma-utils.min.js/wp-content/plugins/bens-email-marketing-automation/assets/js/bensemma-daterangepicker.min.js/wp-content/plugins/bens-email-marketing-automation/assets/css/admin.css+2 more

Script Paths

wp-content/plugins/bens-email-marketing-automation/assets/js/admin.jswp-content/plugins/bens-email-marketing-automation/assets/js/bensemma-select2.min.jswp-content/plugins/bens-email-marketing-automation/assets/js/bensemma-chart.jswp-content/plugins/bens-email-marketing-automation/assets/js/bensemma-utils.min.jswp-content/plugins/bens-email-marketing-automation/assets/js/bensemma-daterangepicker.min.js

Version Parameters

ver=1.0.19ver=4.1.0-rc.0

HTML / DOM Fingerprints

CSS Classes

bensemma-admin-content

Data Attributes

data-bensemma-input

JS Globals

bensemma

FAQ