Does CCR Event have any unpatched vulnerabilities?

No published vulnerabilities and no findings under coordinated disclosure as of the latest data update. Always keep the plugin updated to the latest version.

Is CCR Event compatible with WordPress 3.7.41?

According to WordPress.org data, CCR Event 1.0.0 has been tested up to WordPress 3.7.41. Check the plugin's changelog for the latest compatibility information.

How often is CCR Event updated?

CCR Event was last updated on Jan 22, 2014. Frequent updates are generally a positive security signal.

What is CCR Event's security score?

CCR Event has a WP-Safety security score of 85/100. This score is computed from CVE history, patch response time, developer trust signals, and plugin maintenance activity.

CCR Event Security & Risk Analysis

wordpress.org/plugins/ccr-event

CCR Upcoming Events WordPress Plugin that can help you to add Upcoming Events in your website.

10 active installs v1.0.0 PHP + WP 3.0.1+ Updated Jan 22, 2014

codexcodercustom-event-pluginupcomign-event-pluginupcoming-eventwordpress-best-event-plugin

A · Safe

CVEs total0

Unpatched0

Last CVENever

Plugin page Download

Safety Verdict

Is CCR Event Safe to Use in 2026?

Generally Safe

Score 85/100

CCR Event has no known CVEs and is actively maintained. It's a solid choice for most WordPress installations.

No known CVEs Updated 12yr ago

Risk Assessment

The "ccr-event" v1.0.0 plugin exhibits a mixed security posture. On the positive side, the plugin has no recorded vulnerabilities in its history and all its SQL queries are properly prepared. Furthermore, the static analysis shows no critical or high severity taint flows, dangerous functions, file operations, or external HTTP requests, indicating a generally clean codebase in these areas. However, there are significant areas of concern. The plugin has a low percentage of properly escaped output (39%), suggesting a high risk of cross-site scripting (XSS) vulnerabilities. Additionally, the absence of nonce checks and capability checks for its single shortcode entry point is a critical oversight, potentially allowing unauthorized actions or information disclosure if the shortcode can be exploited. The lack of any taint flow analysis or detailed breakdown of unsanitized paths also leaves a gap in understanding potential subtle vulnerabilities.

Key Concerns

Insufficient output escaping
Missing nonce checks on entry point
Missing capability checks on entry point

Vulnerabilities

None known

CCR Event Security Vulnerabilities

No known vulnerabilities — this is a good sign.

Version History

CCR Event Release Timeline

No version history available.

Code Analysis

Analyzed Mar 17, 2026

CCR Event Code Analysis

Dangerous Functions

Raw SQL Queries

0 prepared

Unescaped Output

12 escaped

Nonce Checks

Capability Checks

File Operations

External Requests

Bundled Libraries

Output Escaping

39% escaped31 total outputs

Attack Surface

CCR Event Attack Surface

Entry Points1

Unprotected0

Shortcodes 1

[ccr-event] index.php:19

WordPress Hooks 8

actionwp_enqueue_scriptsindex.php:16

actioninitindex.php:17

actionadmin_headindex.php:18

filterwidget_textindex.php:22

actionadd_meta_boxesindex.php:25

actionsave_postindex.php:28

filtertemplate_includeindex.php:31

actionwidgets_initindex.php:256

Maintenance & Trust

CCR Event Maintenance & Trust

Maintenance Signals

WordPress version tested3.7.41

Last updatedJan 22, 2014

PHP min version

Downloads2K

Community Trust

Rating70/100

Number of ratings2

Active installs10

Alternatives

CCR Event Alternatives

CCR Client Testimonials

ccr-client-testimonials

CCR Testimonial is a Carousel type Testimonial build with Bootstrap 3.0

10 No CVEs

Upcoming Events Lists

upcoming-events-lists

A WordPress plugin to show a list of upcoming events on the front-end.

1K 1 unpatched

External Events Calendar

external-events-calendar

This plugin adds a basic "upcoming events" calendar of links to Wordpress.

30 No CVEs

CCR Colorful FAQ

ccr-colorful-faq

CCR Colorful FAQs WordPress Plugin developed by [CodexCoder](http://www.codexcoder.com/ "CodexCoder").

10 No CVEs

CCR Featured Posts

ccr-featured-posts

Featured Posts Widget shows by selected categories

10 No CVEs

Developer Profile

CCR Event Developer Profile

CodexCoder

4 plugins · 40 total installs

trust score

Avg Security Score

85/100

Avg Patch Time

30 days

View full developer profile

Detection Fingerprints

How We Detect CCR Event

Patterns used to identify this plugin on WordPress sites during automated security audits and web crawling.

Asset Fingerprints

Asset Paths

/wp-content/plugins/ccr-event/css/style.css

HTML / DOM Fingerprints

CSS Classes

ccr-eventsccr-event-contentccr-event-dateccr-dayccr-month-yearccr-content

Data Attributes

name="ccr_event_date"name="ccr_event_gate"name="ccr_event_location"name="ccr_event_register_link"

Shortcode Output

<div id="ccr-events">

FAQ

CCR Event Security & Risk Analysis

Is CCR Event Safe to Use in 2026?

Generally Safe

Key Concerns

CCR Event Security Vulnerabilities

CCR Event Release Timeline

CCR Event Code Analysis

Output Escaping

CCR Event Attack Surface

Shortcodes 1

CCR Event Maintenance & Trust

Maintenance Signals

Community Trust

CCR Event Alternatives

CCR Client Testimonials

Upcoming Events Lists

External Events Calendar

CCR Colorful FAQ

CCR Featured Posts

CCR Event Developer Profile

How We Detect CCR Event

Asset Fingerprints

HTML / DOM Fingerprints

Frequently Asked Questions about CCR Event