Does Docket WP have any unpatched vulnerabilities?

No. All known vulnerabilities in Docket WP have been patched as of the latest data update. Always keep the plugin updated to the latest version.

Is Docket WP compatible with WordPress 6.0.11?

According to WordPress.org data, Docket WP 1.1.4 has been tested up to WordPress 6.0.11. Check the plugin's changelog for the latest compatibility information.

Is Docket WP compatible with PHP 5.6+?

Docket WP requires PHP 5.6 or higher. Most modern WordPress hosts run PHP 8.1 or 8.2. If you are on an older PHP version, consider upgrading before installing this plugin.

How often is Docket WP updated?

Docket WP was last updated on Aug 18, 2022. Frequent updates are generally a positive security signal.

What is Docket WP's security score?

Docket WP has a WP-Safety security score of 85/100. This score is computed from CVE history, patch response time, developer trust signals, and plugin maintenance activity.

Docket WP Security & Risk Analysis

wordpress.org/plugins/docket-wp

The Docket WP plugin connects your Docket WP account into any WordPress installation. You will need a Docket WP account in order to use the plugin.

400 active installs v1.1.4 PHP 5.6+ WP 4.7+ Updated Aug 18, 2022

docketdocketwpliststaskstodo

A · Safe

CVEs total0

Unpatched0

Last CVENever

Plugin page Download

Safety Verdict

Is Docket WP Safe to Use in 2026?

Generally Safe

Score 85/100

Docket WP has no known CVEs and is actively maintained. It's a solid choice for most WordPress installations.

No known CVEs Updated 3yr ago

Risk Assessment

The 'docket-wp' v1.1.4 plugin exhibits a strong security posture based on the provided static analysis and vulnerability history. The absence of AJAX handlers, REST API routes, shortcodes, and cron events significantly limits the attack surface, with no identified entry points lacking authentication. The code signals further reinforce this, showing no dangerous functions, all SQL queries using prepared statements, and a good percentage of output escaping. The presence of nonce and capability checks indicates an awareness of security best practices. The vulnerability history being completely clear with no recorded CVEs further strengthens this positive assessment, suggesting a well-maintained and secure plugin.

Key Concerns

Flows with unsanitized paths
Incomplete output escaping

Vulnerabilities

None known

Docket WP Security Vulnerabilities

No known vulnerabilities — this is a good sign.

Code Analysis

Analyzed Mar 16, 2026

Docket WP Code Analysis

Dangerous Functions

Raw SQL Queries

0 prepared

Unescaped Output

4 escaped

Nonce Checks

Capability Checks

File Operations

External Requests

Bundled Libraries

Output Escaping

67% escaped6 total outputs

Data Flows

1 unsanitized

Data Flow Analysis

2 flows1 with unsanitized paths

maybeFetchAndStoreProjectSecret (inc\Controllers\UserController.php:72)

Source (user input) Sink (dangerous op) Sanitizer Transform Unsanitized Sanitized

Attack Surface

Docket WP Attack Surface

Entry Points0

Unprotected0

WordPress Hooks 5

filterplugin_action_links_docket-wp/docket-wp.phpdocket-wp.php:30

actionshow_user_profileinc\Controllers\UserProfileController.php:11

actionedit_user_profileinc\Controllers\UserProfileController.php:12

actionpersonal_options_updateinc\Controllers\UserProfileController.php:13

actionedit_user_profile_updateinc\Controllers\UserProfileController.php:14

Maintenance & Trust

Docket WP Maintenance & Trust

Maintenance Signals

WordPress version tested6.0.11

Last updatedAug 18, 2022

PHP min version5.6

Downloads9K

Community Trust

Rating100/100

Number of ratings14

Active installs400

Alternatives

Docket WP Alternatives

To Do List Member

todo-lists-for-membership-sites

To Do List Member adds todolists and tasks using custom taxonomy and post type to your blog.

10 No CVEs

Dashboard To-Do List

dashboard-to-do-list

A dashboard to-do list widget with the option to show the to-do list on the website. This is a great tool for web developers building a new website.

1K 2 CVEs

Checklist

checklist

Turn any list in your blog to a beautiful interactive checklist. Print, Use, Share, Download to Mobile and more. 100% Free.

400 1 unpatched

Todo Block

todo-block

100

Adds ToDo list block that shows checkboxes on frontend and backend of your site.

200 No CVEs

Todo for BuddyPress & BuddyBoss

bp-user-to-do-list

100

Transform your BuddyPress or BuddyBoss community into a powerful task management platform. Members can create personal todos, collaborate on group tas …

100 1 CVE

Developer Profile

Docket WP Developer Profile

Andre Gagnon

2 plugins · 100K total installs

trust score

Avg Security Score

92/100

Avg Patch Time

7 days

View full developer profile

Detection Fingerprints

How We Detect Docket WP

Patterns used to identify this plugin on WordPress sites during automated security audits and web crawling.

Asset Fingerprints

Asset Paths

/wp-content/plugins/docket-wp/dist/app.js/wp-content/plugins/docket-wp/dist/app.css

Script Paths

/wp-content/plugins/docket-wp/dist/app.js

Version Parameters

docket-wp/dist/app.js?ver=docket-wp/dist/app.css?ver=

HTML / DOM Fingerprints

CSS Classes

wp-admin-bar-app

Data Attributes

data-vue-app

JS Globals

docketDatadocketApi

REST Endpoints

/wp-json/docketwp/v1/user/add/wp-json/docketwp/v1/user/regenerate-project-secret/wp-json/docketwp/v1/user/get-project-secret/wp-json/docketwp/v1/user/disable-user/wp-json/docketwp/v1/users/wp-json/docketwp/v1/sync-projects/wp-json/docketwp/v1/user/regenerate-project-id

FAQ