Does CM Multisite-Lite have any unpatched vulnerabilities?

No published vulnerabilities and no findings under coordinated disclosure as of the latest data update. Always keep the plugin updated to the latest version.

Is CM Multisite-Lite compatible with WordPress 6.4.8?

According to WordPress.org data, CM Multisite-Lite 1.1.2 has been tested up to WordPress 6.4.8. Check the plugin's changelog for the latest compatibility information.

Is CM Multisite-Lite compatible with PHP 7.4+?

CM Multisite-Lite requires PHP 7.4 or higher. Most modern WordPress hosts run PHP 8.1 or 8.2. If you are on an older PHP version, consider upgrading before installing this plugin.

How often is CM Multisite-Lite updated?

CM Multisite-Lite was last updated on Feb 19, 2024. Frequent updates are generally a positive security signal.

What is CM Multisite-Lite's security score?

CM Multisite-Lite has a WP-Safety security score of 85/100. This score is computed from CVE history, patch response time, developer trust signals, and plugin maintenance activity.

CM Multisite-Lite Security & Risk Analysis

wordpress.org/plugins/cm-multisite-lite

Serve multiple front end websites with different content from a single WordPress installation.

10 active installs v1.1.2 PHP 7.4+ WP 5.0+ Updated Feb 19, 2024

multi-domainmulti-sitemultiple-subdomainsmultisitemultistore

A · Safe

CVEs total0

Unpatched0

Last CVENever

Plugin page Download

Safety Verdict

Is CM Multisite-Lite Safe to Use in 2026?

Generally Safe

Score 85/100

CM Multisite-Lite has no known CVEs and is actively maintained. It's a solid choice for most WordPress installations.

No known CVEs Updated 2yr ago

Risk Assessment

The "cm-multisite-lite" v1.1.2 plugin exhibits a strong security posture based on the provided static analysis. The absence of identified dangerous functions, the sole SQL query utilizing prepared statements, and the 100% output escaping indicate adherence to good coding practices. Furthermore, the zero recorded CVEs and the lack of any recorded vulnerabilities in its history suggest a history of secure development and maintenance, or that the plugin's functionality is sufficiently limited to avoid common security pitfalls.

However, the complete absence of detected entry points (AJAX, REST API, shortcodes, cron events) in the static analysis is noteworthy. While this contributes to a seemingly zero attack surface, it could also imply that the plugin's functionality is very minimal or that the static analysis tools were unable to discover potential entry points that might exist through less conventional means. The lack of observed nonce checks or capability checks, combined with zero entry points, means that any potential (even if undiscovered) entry points would theoretically be unprotected. Despite these theoretical concerns, the overwhelming evidence points to a secure plugin in its current state.

Key Concerns

No nonce checks detected
No capability checks detected

Vulnerabilities

None known

CM Multisite-Lite Security Vulnerabilities

No known vulnerabilities — this is a good sign.

Version History

CM Multisite-Lite Release Timeline

No version history available.

Code Analysis

Analyzed Apr 16, 2026

CM Multisite-Lite Code Analysis

Dangerous Functions

Raw SQL Queries

1 prepared

Unescaped Output

0 escaped

Nonce Checks

Capability Checks

File Operations

External Requests

Bundled Libraries

SQL Query Safety

100% prepared1 total queries

Attack Surface

CM Multisite-Lite Attack Surface

Entry Points0

Unprotected0

WordPress Hooks 5

actionwp_loadedindex.php:56

actionshutdownindex.php:57

actionpre_get_postsindex.php:58

filterget_next_post_whereindex.php:60

filterget_previous_post_whereindex.php:67

Maintenance & Trust

CM Multisite-Lite Maintenance & Trust

Maintenance Signals

WordPress version tested6.4.8

Last updatedFeb 19, 2024

PHP min version7.4

Downloads1K

Community Trust

Rating0/100

Number of ratings0

Active installs10

Alternatives

CM Multisite-Lite Alternatives

Multistore Multivendor

multistore-multivendor

This plugin allows you to show WooCommerce products on different domains or subdomains to make a multistore WooCommerce website.

20 No CVEs

GrabWP Tenancy

grabwp-tenancy

100

Multi-tenant WordPress with shared MySQL, domain and path routing, and isolated uploads.

10 No CVEs

Multisite Post Duplicator

multisite-post-duplicator

Duplicate/Copy/Clone any individual page, post or custom post type from one site on your multisite network to another.

400 1 unpatched

Multi Site Plugins Add New

multi-site-plugins-add-new

Adds an "Add New" sub menu item to the Plugins menu of all sites inside of a network for network admins.

30 No CVEs

Create Pages on Multisite WordPress

create-pages-on-multisite

Automate adding the same page on multiple installs of a WordPress multisite.

10 No CVEs

Developer Profile

CM Multisite-Lite Developer Profile

CodingMall.com

4 plugins · 30 total installs

trust score

Avg Security Score

93/100

Avg Patch Time

30 days

View full developer profile

Detection Fingerprints

How We Detect CM Multisite-Lite

Patterns used to identify this plugin on WordPress sites during automated security audits and web crawling.

Asset Fingerprints

Version Parameters

cm-multisite-lite/style.css?ver=1.1.2

HTML / DOM Fingerprints

FAQ