Does Christmasify! have any unpatched vulnerabilities?

No. All known vulnerabilities in Christmasify! have been patched as of the latest data update. Always keep the plugin updated to the latest version.

Is Christmasify! compatible with WordPress 6.7.5?

According to WordPress.org data, Christmasify! 1.5.7 has been tested up to WordPress 6.7.5. Check the plugin's changelog for the latest compatibility information.

How often is Christmasify! updated?

Christmasify! was last updated on Nov 27, 2024. Frequent updates are generally a positive security signal.

What is Christmasify!'s security score?

Christmasify! has a WP-Safety security score of 91/100. This score is computed from CVE history, patch response time, developer trust signals, and plugin maintenance activity.

Christmasify! Security & Risk Analysis

wordpress.org/plugins/christmasify

Christmasify is an easy-to-use Christmas plugin that can add snow, santa, decorations, music and a lovely Christmas font to your WordPress website.

3K active installs v1.5.7 PHP + WP 4.3+ Updated Nov 27, 2024

christmaschristmasificationchristmasifyfestivesnow

A · Safe

CVEs total1

Unpatched0

Last CVEAug 9, 2024

Plugin page Download

Safety Verdict

Is Christmasify! Safe to Use in 2026?

Generally Safe

Score 91/100

Christmasify! has a strong security track record. Known vulnerabilities have been patched promptly.

1 known CVELast CVE: Aug 9, 2024Updated 1yr ago

Risk Assessment

The Christmasify plugin v1.5.7 exhibits a generally positive security posture based on static analysis, with no identified critical or high-severity issues in taint flows and a complete absence of dangerous functions or raw SQL queries. The presence of a nonce check is also a good practice. However, a significant concern arises from the low percentage (23%) of properly escaped output, indicating a potential risk of Cross-Site Scripting (XSS) vulnerabilities. While there are no currently unpatched CVEs, the plugin does have a history of one medium-severity Cross-Site Request Forgery (CSRF) vulnerability, last patched in August 2024. This suggests that while recent vulnerabilities have been addressed, developers should remain vigilant about input sanitization and output escaping to prevent future cross-site attacks.

Key Concerns

Low output escaping percentage
History of medium CSRF vulnerability

Vulnerabilities

Christmasify! Security Vulnerabilities

CVEs by Year

1 CVE in 2024

2024

Patched Has unpatched

Severity Breakdown

Medium

1 total CVE

CVE-2024-7574medium · 6.1Cross-Site Request Forgery (CSRF)

Christmasify! <= 1.5.5 - Cross-Site Request Forgery to Stored Cross-Site Scripting

Aug 9, 2024 Patched in 1.5.6 (1d)

Code Analysis

Analyzed Mar 16, 2026

Christmasify! Code Analysis

Dangerous Functions

Raw SQL Queries

0 prepared

Unescaped Output

11 escaped

Nonce Checks

Capability Checks

File Operations

External Requests

Bundled Libraries

Output Escaping

23% escaped48 total outputs

Attack Surface

Christmasify! Attack Surface

Entry Points0

Unprotected0

WordPress Hooks 8

actionadmin_menuadmin\class-cf-christmasification-admin.php:59

filterplugin_action_links_christmasify/cf-christmasification.phpadmin\class-cf-christmasification-admin.php:63

actionplugins_loadedincludes\class-cf-christmasification.php:139

actionadmin_enqueue_scriptsincludes\class-cf-christmasification.php:154

actionadmin_enqueue_scriptsincludes\class-cf-christmasification.php:155

actionwp_enqueue_scriptsincludes\class-cf-christmasification.php:170

actionwp_enqueue_scriptsincludes\class-cf-christmasification.php:171

actionwp_footerpublic\class-cf-christmasification-public.php:139

Maintenance & Trust

Christmasify! Maintenance & Trust

Maintenance Signals

WordPress version tested6.7.5

Last updatedNov 27, 2024

PHP min version

Downloads83K

Community Trust

Rating96/100

Number of ratings29

Active installs3K

Alternatives

Christmasify! Alternatives

Snow Storm

snow-storm

Display falling snow flakes on the front of your WordPress website for a festive presentation.

500 2 CVEs

Christmas Snowflakes

christmas-snowflakes

100

Add falling animated Christmas snowflakes to your WordPress site. Includes color, speed, SVG shapes, and shortcode features.

0 No CVEs

AWPLife Weather Effects

weather-effect

Add animated falling effects like snow, rain, autumn leaves, and seasonal decorations to your website.

5K 2 CVEs

WP Snow Effect

wp-snow-effect

Add nice looking animation effect of falling snow to your Wordpress site and enjoy winter and Christmas.

2K 1 unpatched

Christmas Snow 3D – Snowfalling, Snowflake Effect and Christmas mood

christmas-snow-3d

The plugin adds Christmas mood and falling snowflakes with unique and smooth experience and realistic animation.

200 No CVEs

Developer Profile

Christmasify! Developer Profile

Cyber Fox

1 plugin · 3K total installs

trust score

Avg Security Score

91/100

Avg Patch Time

1 days

View full developer profile

Detection Fingerprints

How We Detect Christmasify!

Patterns used to identify this plugin on WordPress sites during automated security audits and web crawling.

Asset Fingerprints

Asset Paths

/wp-content/plugins/christmasify/assets/css/christmasify-public.css/wp-content/plugins/christmasify/assets/js/christmasify-public.js

Script Paths

/wp-content/plugins/christmasify/assets/js/christmasify-public.js

Version Parameters

christmasify/assets/css/christmasify-public.css?ver=christmasify/assets/js/christmasify-public.js?ver=

HTML / DOM Fingerprints

CSS Classes

christmasify-bodychristmasify-snow

HTML Comments

Data Attributes

data-christmasify-animationdata-christmasify-intensitydata-christmasify-speeddata-christmasify-wind

JS Globals

christmasify_params

Shortcode Output

[christmasify]

FAQ