Does Customer Reviews by Revukangaroo have any unpatched vulnerabilities?

No. All known vulnerabilities in Customer Reviews by Revukangaroo have been patched as of the latest data update. Always keep the plugin updated to the latest version.

Is Customer Reviews by Revukangaroo compatible with WordPress 5.8.13?

According to WordPress.org data, Customer Reviews by Revukangaroo 1.2.5 has been tested up to WordPress 5.8.13. Check the plugin's changelog for the latest compatibility information.

How often is Customer Reviews by Revukangaroo updated?

Customer Reviews by Revukangaroo was last updated on Sep 27, 2021. Frequent updates are generally a positive security signal.

What is Customer Reviews by Revukangaroo's security score?

Customer Reviews by Revukangaroo has a WP-Safety security score of 85/100. This score is computed from CVE history, patch response time, developer trust signals, and plugin maintenance activity.

Customer Reviews by Revukangaroo Security & Risk Analysis

wordpress.org/plugins/customer-reviews-by-revukangaroo

Revukangaroo allows you to funnel negative and positive reviews directly from your website.Take control of your online reputation!

30 active installs v1.2.5 PHP + WP 4.1+ Updated Sep 27, 2021

business-reviewsnegative-review-blockerreview-filterreviewsyelp

A · Safe

CVEs total0

Unpatched0

Last CVENever

Plugin page Download

Safety Verdict

Is Customer Reviews by Revukangaroo Safe to Use in 2026?

Generally Safe

Score 85/100

Customer Reviews by Revukangaroo has no known CVEs and is actively maintained. It's a solid choice for most WordPress installations.

No known CVEs Updated 4yr ago

Risk Assessment

The plugin 'customer-reviews-by-revukangaroo' v1.2.5 exhibits a mixed security posture. On the positive side, the plugin demonstrates good practices by utilizing prepared statements for all SQL queries and includes nonce and capability checks, indicating an awareness of common WordPress security vulnerabilities. There are no recorded CVEs, suggesting a history of relative security.

However, the static analysis reveals a significant concern regarding output escaping, with only 36% of outputs being properly escaped. This can lead to Cross-Site Scripting (XSS) vulnerabilities, allowing attackers to inject malicious scripts into the website, impacting users who view the content rendered by the plugin. Furthermore, the taint analysis identified one flow with an unsanitized path, which, although not categorized as critical or high severity, still represents a potential risk for data manipulation or unauthorized access if not addressed.

Overall, while the plugin has a clean vulnerability history and good foundational security practices like prepared SQL statements, the prevalent issue with output escaping presents a notable risk that could be exploited. The presence of an unsanitized path in the taint analysis, even if low severity, warrants attention to ensure data integrity and security.

Key Concerns

Low output escaping percentage
Unsanitized path in taint analysis

Vulnerabilities

None known

Customer Reviews by Revukangaroo Security Vulnerabilities

No known vulnerabilities — this is a good sign.

Code Analysis

Analyzed Mar 16, 2026

Customer Reviews by Revukangaroo Code Analysis

Dangerous Functions

Raw SQL Queries

0 prepared

Unescaped Output

4 escaped

Nonce Checks

Capability Checks

File Operations

External Requests

Bundled Libraries

Output Escaping

36% escaped11 total outputs

Data Flows

1 unsanitized

Data Flow Analysis

3 flows1 with unsanitized paths

<apireviews-template> (apireviews-template.php:0)

Source (user input) Sink (dangerous op) Sanitizer Transform Unsanitized Sanitized

Attack Surface

Customer Reviews by Revukangaroo Attack Surface

Entry Points0

Unprotected0

WordPress Hooks 7

filterpage_attributes_dropdown_pages_argscustomer-reviews-by-revukangaroo.php:45

filtertheme_page_templatescustomer-reviews-by-revukangaroo.php:53

filterwp_insert_post_datacustomer-reviews-by-revukangaroo.php:61

filtertemplate_includecustomer-reviews-by-revukangaroo.php:67

actionplugins_loadedcustomer-reviews-by-revukangaroo.php:126

actionadmin_menucustomer-reviews-by-revukangaroo.php:192

actionadmin_print_stylescustomer-reviews-by-revukangaroo.php:209

Maintenance & Trust

Customer Reviews by Revukangaroo Maintenance & Trust

Maintenance Signals

WordPress version tested5.8.13

Last updatedSep 27, 2021

PHP min version

Downloads3K

Community Trust

Rating100/100

Number of ratings1

Active installs30

Alternatives

Customer Reviews by Revukangaroo Alternatives

Review Map by RevuKangaroo

review-map-by-revukangaroo

Show off your customer's online reviews with Review Map by Revukangaroo.

20 No CVEs

Reviews Feed – Add Testimonials and Customer Reviews From Google Reviews, Yelp, TripAdvisor, and More

reviews-feed

No API key required. Display Yelp and Google reviews for any business in a clean, customizable feed on your site.

100K 2 CVEs

Site Reviews

site-reviews

Site Reviews is a complete review management solution that integrates with WooCommerce and SureCart and works similarly to reviews on Amazon, Tripadvi …

70K 13 CVEs

Reviews Widgets for Google, Yelp & TripAdvisor

fb-reviews-widget

Combine Facebook recommendations with Google, Yelp and TripAdvisor reviews in a widget, block or shortcode. Build a trusted website!

10K 2 CVEs

Better Business Reviews – Trustpilot WordPress Plugin

better-business-reviews

Better Business Reviews allows you to display your business reviews from a Trustpilot profile.

3K 1 CVE

Developer Profile

Customer Reviews by Revukangaroo Developer Profile

revukangaroo

2 plugins · 50 total installs

trust score

Avg Security Score

85/100

Avg Patch Time

30 days

View full developer profile

Detection Fingerprints

How We Detect Customer Reviews by Revukangaroo

Patterns used to identify this plugin on WordPress sites during automated security audits and web crawling.

Asset Fingerprints

Asset Paths

/wp-content/plugins/customer-reviews-by-revukangaroo/css/style_rev.css

Version Parameters

customer-reviews-by-revukangaroo/css/style_rev.css?ver=

HTML / DOM Fingerprints

CSS Classes

regular-api-textbutton_subm

HTML Comments

<!-- Code of Adding Admin page to change the API keys ends here **************************************************+15 more

Data Attributes

placeholder="Enter your API key here"value="<?php if (get_option('custom_api_key_review')) { echo get_option('custom_api_key_review'); } ?>"

Shortcode Output

<iframe src="https://revukangaroo.com/employers/confirmserviceprofessional/https://revukangaroo.com/employers/confirmserviceprofessional/https://revukangaroo.com/employers/confirmserviceprofessional/https://revukangaroo.com/employers/confirmserviceprofessional/

FAQ