WP-Safety

Darujme Security & Risk Analysis

wordpress.org/plugins/darujme

A free plugin for Darujme.cz and WordPress integration.

20 active installs v1.1.11 PHP 7.3.0+ WP 5.4.0+ Updated Mar 28, 2025
darujmedonation
92
A · Safe
CVEs total0
Unpatched0
Last CVENever
Download
Safety Verdict

Is Darujme Safe to Use in 2026?

Generally Safe

Score 92/100

Darujme has no known CVEs and is actively maintained. It's a solid choice for most WordPress installations.

No known CVEs Updated 1yr ago
Risk Assessment

The "darujme" plugin version 1.1.11 exhibits a mixed security posture. The plugin demonstrates good practices in its use of prepared statements for SQL queries (86%) and the presence of nonce and capability checks (5 and 7 respectively). Furthermore, the absence of known CVEs and a clean vulnerability history are strong indicators of past security diligence. However, significant concerns arise from the static analysis. The high number of file operations (23) combined with a concerning 22 out of 23 analyzed taint flows having unsanitized paths, particularly the 5 identified as high severity, present a substantial risk. The presence of dangerous functions like unserialize, proc_open, and assert, even if not directly linked to a high-severity taint flow in this analysis, introduces potential for code execution vulnerabilities if not handled with extreme care. The plugin's overall security could be improved by addressing the identified unsanitized taint paths and ensuring robust sanitization around the use of dangerous functions.

Key Concerns

  • High severity unsanitized taint flows
  • Presence of dangerous functions
  • Unsanitized paths in taint flows
  • Moderate output escaping
Vulnerabilities
None known

Darujme Security Vulnerabilities

No known vulnerabilities — this is a good sign.
Code Analysis
Analyzed Mar 16, 2026

Darujme Code Analysis

Dangerous Functions
6
Raw SQL Queries
1
6 prepared
Unescaped Output
30
58 escaped
Nonce Checks
5
Capability Checks
7
File Operations
23
External Requests
3
Bundled Libraries
0

Dangerous Functions Found

unserialize$serializable = unserialize($signature['serializable']);deps\laravel\serializable-closure\src\Serializers\Signed.php:76
proc_open$this->process = proc_open($this->command, static::DESCRIPTOR_SPEC, $this->pipes, $this->cwd);deps\monolog\monolog\src\Monolog\Handler\ProcessHandler.php:104
assertassert($this->regexp !== null);deps\phpstan\phpdoc-parser\src\Lexer\Lexer.php:56
assertassert($this->types !== null);deps\phpstan\phpdoc-parser\src\Lexer\Lexer.php:57
assertassert($json !== \false);deps\phpstan\phpdoc-parser\src\Parser\ParserException.php:24
assertassert($index !== null);deps\phpstan\phpdoc-parser\src\Parser\TokenIterator.php:132

SQL Query Safety

86% prepared7 total queries

Output Escaping

66% escaped88 total outputs
Data Flows
22 unsanitized

Data Flow Analysis

23 flows22 with unsanitized paths
save (deps\wpify\custom-fields\src\Implementations\Comment.php:133)
Source (user input) Sink (dangerous op) Sanitizer Transform Unsanitized Sanitized
Attack Surface

Darujme Attack Surface

Entry Points6
Unprotected0

Shortcodes 6

[copyright] deps\wpify\snippets\src\CopyrightShortcode.php:9
[darujme_confirmation] src\Shortcodes.php:18
[darujme_form] src\Shortcodes.php:19
[darujme_widget] src\Shortcodes.php:20
[darujme_pledges] src\Shortcodes.php:21
[darujme_qr_code] src\Shortcodes.php:22
WordPress Hooks 84
actionplugins_loadeddarujme.php:88
actionadmin_noticesdarujme.php:94
actionplugins_loadeddarujme.php:117
actionadmin_noticesdarujme.php:122
actionlogin_enqueue_scriptsdeps\wpify\asset\src\Asset.php:27
actionlogin_enqueue_scriptsdeps\wpify\asset\src\Asset.php:28
actionadmin_enqueue_scriptsdeps\wpify\asset\src\Asset.php:35
actionadmin_enqueue_scriptsdeps\wpify\asset\src\Asset.php:36
actionwp_enqueue_scriptsdeps\wpify\asset\src\Asset.php:42
actionwp_enqueue_scriptsdeps\wpify\asset\src\Asset.php:43
actionrest_api_initdeps\wpify\custom-fields\src\Api.php:24
actionadmin_enqueue_scriptsdeps\wpify\custom-fields\src\Implementations\AbstractImplementation.php:40
actioncurrent_screendeps\wpify\custom-fields\src\Implementations\AbstractImplementation.php:41
actionadd_meta_boxes_commentdeps\wpify\custom-fields\src\Implementations\Comment.php:63
actionedit_commentdeps\wpify\custom-fields\src\Implementations\Comment.php:64
actioninitdeps\wpify\custom-fields\src\Implementations\GutenbergBlock.php:104
actionenqueue_block_editor_assetsdeps\wpify\custom-fields\src\Implementations\GutenbergBlock.php:105
actionadmin_footerdeps\wpify\custom-fields\src\Implementations\GutenbergBlock.php:106
actionadd_meta_boxesdeps\wpify\custom-fields\src\Implementations\Metabox.php:65
actionsave_postdeps\wpify\custom-fields\src\Implementations\Metabox.php:66
actioninitdeps\wpify\custom-fields\src\Implementations\Metabox.php:67
actionuser_admin_menudeps\wpify\custom-fields\src\Implementations\Options.php:70
actionnetwork_admin_menudeps\wpify\custom-fields\src\Implementations\Options.php:72
actionnetwork_admin_edit_wcf-save-network-optionsdeps\wpify\custom-fields\src\Implementations\Options.php:73
actionadmin_menudeps\wpify\custom-fields\src\Implementations\Options.php:75
actionadmin_initdeps\wpify\custom-fields\src\Implementations\Options.php:77
actionadd_meta_boxesdeps\wpify\custom-fields\src\Implementations\OrderMetabox.php:71
actionwoocommerce_update_orderdeps\wpify\custom-fields\src\Implementations\OrderMetabox.php:72
actioninitdeps\wpify\custom-fields\src\Implementations\OrderMetabox.php:73
filterwoocommerce_product_data_tabsdeps\wpify\custom-fields\src\Implementations\ProductOptions.php:58
actionwoocommerce_product_data_panelsdeps\wpify\custom-fields\src\Implementations\ProductOptions.php:59
actionwoocommerce_process_product_metadeps\wpify\custom-fields\src\Implementations\ProductOptions.php:61
actioninitdeps\wpify\custom-fields\src\Implementations\ProductOptions.php:62
actionwoocommerce_product_after_variable_attributesdeps\wpify\custom-fields\src\Implementations\ProductVariationOptions.php:47
actionwoocommerce_save_product_variationdeps\wpify\custom-fields\src\Implementations\ProductVariationOptions.php:49
actioninitdeps\wpify\custom-fields\src\Implementations\ProductVariationOptions.php:50
filternetwork_edit_site_nav_linksdeps\wpify\custom-fields\src\Implementations\SiteOptions.php:55
actionnetwork_admin_menudeps\wpify\custom-fields\src\Implementations\SiteOptions.php:56
actionadmin_initdeps\wpify\custom-fields\src\Implementations\SiteOptions.php:57
actionnetwork_admin_edit_wcf-save-site-optionsdeps\wpify\custom-fields\src\Implementations\SiteOptions.php:58
actionadd_meta_boxesdeps\wpify\custom-fields\src\Implementations\SubscriptionMetabox.php:71
actionwoocommerce_update_orderdeps\wpify\custom-fields\src\Implementations\SubscriptionMetabox.php:72
actioninitdeps\wpify\custom-fields\src\Implementations\SubscriptionMetabox.php:73
actioninitdeps\wpify\custom-fields\src\Implementations\Taxonomy.php:48
actionshow_user_profiledeps\wpify\custom-fields\src\Implementations\User.php:41
actionedit_user_profiledeps\wpify\custom-fields\src\Implementations\User.php:42
actionpersonal_options_updatedeps\wpify\custom-fields\src\Implementations\User.php:43
actionedit_user_profile_updatedeps\wpify\custom-fields\src\Implementations\User.php:44
actioninitdeps\wpify\custom-fields\src\Implementations\User.php:45
filterwc_membership_plan_data_tabsdeps\wpify\custom-fields\src\Implementations\WcMembershipPlanOptions.php:58
actionwc_membership_plan_data_panelsdeps\wpify\custom-fields\src\Implementations\WcMembershipPlanOptions.php:59
actionwc_memberships_save_meta_boxdeps\wpify\custom-fields\src\Implementations\WcMembershipPlanOptions.php:61
actioninitdeps\wpify\custom-fields\src\Implementations\WcMembershipPlanOptions.php:62
filterwoocommerce_settings_tabs_arraydeps\wpify\custom-fields\src\Implementations\WooCommerceSettings.php:49
filterwpify_logsdeps\wpify\log\src\Log.php:69
filterwpify_log_tools_initializeddeps\wpify\log\src\Log.php:74
actionadmin_menudeps\wpify\log\src\Tools.php:9
actioninitdeps\wpify\post-type\src\AbstractBuiltinPostType.php:17
actioninitdeps\wpify\post-type\src\AbstractCustomPostType.php:17
actionadmin_noticesdeps\wpify\snippets\src\AdminNotices.php:38
actionnetwork_admin_noticesdeps\wpify\snippets\src\AdminNotices.php:39
actionphpmailer_initdeps\wpify\snippets\src\CustomSMTP.php:10
actionscript_loader_tagdeps\wpify\snippets\src\DeferScripts.php:9
actioninitdeps\wpify\snippets\src\DisableDefaultAsRunners.php:9
actionwp_footerdeps\wpify\snippets\src\DisableEmbeds.php:14
filterembed_oembed_discoverdeps\wpify\snippets\src\DisableEmbeds.php:15
filtertiny_mce_pluginsdeps\wpify\snippets\src\DisableEmbeds.php:16
filterrewrite_rules_arraydeps\wpify\snippets\src\DisableEmbeds.php:17
filtertiny_mce_pluginsdeps\wpify\snippets\src\DisableEmojis.php:16
filterwp_resource_hintsdeps\wpify\snippets\src\DisableEmojis.php:17
filterxmlrpc_enableddeps\wpify\snippets\src\DisableXmlRpc.php:9
filteroption_homedeps\wpify\snippets\src\FixBedrockSiteURL.php:16
filteroption_siteurldeps\wpify\snippets\src\FixBedrockSiteURL.php:17
filternetwork_site_urldeps\wpify\snippets\src\FixBedrockSiteURL.php:18
filtersanitize_file_namedeps\wpify\snippets\src\RemoveAccentInFilenames.php:9
filterstyle_loader_srcdeps\wpify\snippets\src\RemoveScriptVersion.php:9
filterscript_loader_srcdeps\wpify\snippets\src\RemoveScriptVersion.php:10
filterthe_generatordeps\wpify\snippets\src\RemoveScriptVersion.php:12
actionphpmailer_initdeps\wpify\snippets\src\SMTP.php:39
actioninitdeps\wpify\taxonomy\src\AbstractBuiltinTaxonomy.php:17
actioninitdeps\wpify\taxonomy\src\AbstractCustomTaxonomy.php:17
filterthe_contentsrc\Frontend.php:18
actionwp_enqueue_scriptssrc\Frontend.php:19
filterblock_categoriessrc\Managers\BlocksManager.php:26
Maintenance & Trust

Darujme Maintenance & Trust

Maintenance Signals

WordPress version tested6.6.5
Last updatedMar 28, 2025
PHP min version7.3.0
Downloads2K

Community Trust

Rating0/100
Number of ratings0
Active installs20
Alternatives

Darujme Alternatives

GiveWP – Donation Plugin and Fundraising Platform

GiveWP – Donation Plugin and Fundraising Platform

give

B
76

Accept donations and begin fundraising with GiveWP, the highest rated WordPress donation plugin for online giving.

100K 69 CVEs
Donations via PayPal

Donations via PayPal

paypal-donations

A
100

Easy, simple setup to add a PayPal Donation button as a Widget or with a shortcode.

20K 1 CVE
Charitable – Donation Plugin for WordPress – Fundraising with Recurring Donations & More

Charitable – Donation Plugin for WordPress – Fundraising with Recurring Donations & More

charitable

B
80

The best WordPress donation plugin. Create fundraising donation forms, accept recurring donations, easy donor management, add crowdfunding, and more.

10K 14 CVEs
Accept Donations with PayPal & Stripe

Accept Donations with PayPal & Stripe

easy-paypal-donation

A
92

Add a PayPal or Stripe Donation Button to your website and start collecting donations today. No Coding Required. Official PayPal & Stripe Partner.

10K 8 CVEs
Stripe Payment Forms by WP Full Pay – Accept Credit Card Payments, Donations & Subscriptions

Stripe Payment Forms by WP Full Pay – Accept Credit Card Payments, Donations & Subscriptions

wp-full-stripe-free

A
92

🚀 Create Stripe payment forms for WordPress. Accept credit cards, Apple Pay, donations, subscriptions & more. Easy setup, no coding needed!

10K 5 CVEs
Developer Profile

Darujme Developer Profile

WPify

2 plugins · 5K total installs

76
trust score
Avg Security Score
95/100
Avg Patch Time
209 days
View full developer profile
Detection Fingerprints

How We Detect Darujme

Patterns used to identify this plugin on WordPress sites during automated security audits and web crawling.

Asset Fingerprints

Asset Paths
/wp-content/plugins/darujme/vendor/wpify/asset/dist/css/wpify-asset.css/wp-content/plugins/darujme/vendor/wpify/asset/dist/js/wpify-asset.js
Script Paths
/wp-content/plugins/darujme/vendor/wpify/asset/dist/js/wpify-asset.js
Version Parameters
darujme/vendor/wpify/asset/dist/css/wpify-asset.css?ver=darujme/vendor/wpify/asset/dist/js/wpify-asset.js?ver=

HTML / DOM Fingerprints

Data Attributes
data-wpify-asset-handle
JS Globals
wpify_asset_config
FAQ

Frequently Asked Questions about Darujme