Does Newsletter Sign-Up for CleverReach have any unpatched vulnerabilities?

No published vulnerabilities and no findings under coordinated disclosure as of the latest data update. Always keep the plugin updated to the latest version.

Is Newsletter Sign-Up for CleverReach compatible with WordPress 6.8.5?

According to WordPress.org data, Newsletter Sign-Up for CleverReach 2.3.5 has been tested up to WordPress 6.8.5. Check the plugin's changelog for the latest compatibility information.

How often is Newsletter Sign-Up for CleverReach updated?

Newsletter Sign-Up for CleverReach was last updated on Sep 5, 2025. Frequent updates are generally a positive security signal.

What is Newsletter Sign-Up for CleverReach's security score?

Newsletter Sign-Up for CleverReach has a WP-Safety security score of 100/100. This score is computed from CVE history, patch response time, developer trust signals, and plugin maintenance activity.

Newsletter Sign-Up for CleverReach Security & Risk Analysis

wordpress.org/plugins/cleverreach

Easily integrate a CleverReach Sign-Up form in your website. Supports widget, shortcode, comment integration and template function

2K active installs v2.3.5 PHP + WP 3.9+ Updated Sep 5, 2025

email-automationemail-marketing-toolintegrationmarketing-automationnewsletter

A · Safe

CVEs total0

Unpatched0

Last CVENever

Plugin page Download

Safety Verdict

Is Newsletter Sign-Up for CleverReach Safe to Use in 2026?

Generally Safe

Score 100/100

Newsletter Sign-Up for CleverReach has no known CVEs and is actively maintained. It's a solid choice for most WordPress installations.

No known CVEs Updated 8mo ago

Risk Assessment

The CleverReach plugin v2.3.5 exhibits a mixed security posture. On the positive side, it demonstrates good practices regarding SQL queries, exclusively using prepared statements, and a high percentage of properly escaped output. The absence of known CVEs and a clean vulnerability history are also strong indicators of a relatively secure plugin. However, significant concerns arise from the static analysis of its attack surface. With a total of 4 entry points, a concerning 3 are unprotected, specifically AJAX handlers lacking authentication checks. This absence of capability and nonce checks on these critical entry points presents a substantial risk of unauthorized actions being performed if these AJAX handlers are exploitable.

Key Concerns

Unprotected AJAX handlers
Missing nonce checks on AJAX
Missing capability checks

Vulnerabilities

None known

Newsletter Sign-Up for CleverReach Security Vulnerabilities

No known vulnerabilities — this is a good sign.

Version History

Newsletter Sign-Up for CleverReach Release Timeline

v2.3.5Current

v2.3.4

v2.3.3

v2.3.2

v2.3.1

v2.3.0

v2.2.2

v2.2.1

v2.2

v2.1

v2.0.4

v2.0.3

v2.0.2

v2.0.1

v2.0

v1.7.1

v1.7

v1.6

v1.5

v1.4

Code Analysis

Analyzed Mar 16, 2026

Newsletter Sign-Up for CleverReach Code Analysis

Dangerous Functions

Raw SQL Queries

0 prepared

Unescaped Output

185 escaped

Nonce Checks

Capability Checks

File Operations

External Requests

Bundled Libraries

Output Escaping

85% escaped217 total outputs

Attack Surface

3 unprotected

Newsletter Sign-Up for CleverReach Attack Surface

Entry Points4

Unprotected3

AJAX Handlers 3

authwp_ajax_cleverreach_preview_formincludes\class-cleverreach.php:118

authwp_ajax_cleverreach_submitincludes\Form\class-form.php:37

noprivwp_ajax_cleverreach_submitincludes\Form\class-form.php:38

Shortcodes 1

[cleverreach_signup] includes\Form\class-form.php:39

WordPress Hooks 11

actionadmin_menuincludes\class-cleverreach.php:115

actionadmin_enqueue_scriptsincludes\class-cleverreach.php:116

actionadmin_initincludes\class-cleverreach.php:117

actionwidgets_initincludes\class-cleverreach.php:119

actionplugins_loadedincludes\class-cleverreach.php:120

actionadmin_noticesincludes\class-cleverreach.php:196

actionadmin_noticesincludes\class-cleverreach.php:200

actioninitincludes\Form\class-form.php:35

actionwp_enqueue_scriptsincludes\Form\class-form.php:36

actioncomment_formincludes\NewsletterCheckbox\class-newsletter-checkbox.php:40

actioncomment_postincludes\NewsletterCheckbox\class-newsletter-checkbox.php:41

Maintenance & Trust

Newsletter Sign-Up for CleverReach Maintenance & Trust

Maintenance Signals

WordPress version tested6.8.5

Last updatedSep 5, 2025

PHP min version

Downloads62K

Community Trust

Rating66/100

Number of ratings15

Active installs2K

Alternatives

Newsletter Sign-Up for CleverReach Alternatives

CleverReach® WP

cleverreach-wp

Connect your WordPress account with our easy-to-use email software and increase the success of your website or blog with newsletter marketing!

4K 2 CVEs

Official CleverReach® Plugin for WooCommerce

cleverreach-wc

Connect your WooCommerce store to our email software and say hello to successful and simple newsletter marketing – just like Spotify, Bugatti & DHL!

400 1 CVE

Boldermail – Email Marketing and Newsletters for WordPress

boldermail

Send marketing emails reliably from your WordPress dashboard with Boldermail, a powerful email marketing and automation platform.

10 1 unpatched

MailPoet – Newsletters, Email Marketing, and Automation

mailpoet

Send beautiful newsletters from WordPress. Collect subscribers with signup forms, automate your emails for WooCommerce, blog post notifications & more

500K 3 CVEs

Email Subscribers & Newsletters – Email Marketing, Post Notifications & Newsletter Plugin for WordPress

email-subscribers

Add subscription forms on the website and send newsletters & automatically send post notification about new blog posts once it gets published.

60K 42 CVEs

Developer Profile

Newsletter Sign-Up for CleverReach Developer Profile

CleverReach®

3 plugins · 6K total installs

trust score

Avg Security Score

98/100

Avg Patch Time

82 days

View full developer profile

Detection Fingerprints

How We Detect Newsletter Sign-Up for CleverReach

Patterns used to identify this plugin on WordPress sites during automated security audits and web crawling.

Asset Fingerprints

Asset Paths

/wp-content/plugins/cleverreach/resources/css/frontend.css/wp-content/plugins/cleverreach/resources/js/cleverreach-gutenberg.js/wp-content/plugins/cleverreach/resources/js/cleverreach-admin.js

Script Paths

/wp-content/plugins/cleverreach/resources/js/cleverreach-gutenberg.js/wp-content/plugins/cleverreach/resources/js/cleverreach-admin.js

HTML / DOM Fingerprints

CSS Classes

cleverreach-form-groupcleverreach-subscribe-formcleverreach-form-controlcleverreach-form-builder

HTML Comments

Data Attributes

data-cleverreach-form-iddata-cr-input-type

JS Globals

cleverreachAdmincleverreachFrontend

REST Endpoints

/wp-json/cleverreach/v1/forms/wp-json/cleverreach/v1/settings

Shortcode Output

[cleverreach_signup_form][cleverreach_form_builder]

FAQ