EchBay For CocCoc Security & Risk Analysis
wordpress.org/plugins/echbay-for-coccocThis plugin for user in Vietnam!
Is EchBay For CocCoc Safe to Use in 2026?
Generally Safe
Score 100/100EchBay For CocCoc has no known CVEs and is actively maintained. It's a solid choice for most WordPress installations.
The "echbay-for-coccoc" plugin version 1.0.4 exhibits a generally strong security posture based on the provided static analysis. The absence of direct entry points like AJAX handlers, REST API routes, shortcodes, and cron events significantly limits the attack surface. Furthermore, the presence of nonce and capability checks, even if limited in scope, demonstrates an awareness of basic WordPress security best practices. The plugin also avoids the use of bundled libraries, which can often be a source of outdated and vulnerable code.
However, there are a couple of areas that warrant attention. The single SQL query observed is not using prepared statements, which represents a potential SQL injection risk. While the attack surface is small and the vulnerability history is clean, this single instance of non-prepared SQL introduces a tangible, albeit contained, risk. The percentage of properly escaped output is also moderate, suggesting a potential for cross-site scripting (XSS) vulnerabilities if user-controlled data is involved in the unescaped outputs.
Given the lack of known vulnerabilities and the limited scope of the identified code issues, the overall risk is currently low. The plugin appears to be well-developed from a security perspective, with the exception of the SQL query and the output escaping. Continued vigilance and addressing these minor points would further enhance its security.
Key Concerns
- SQL query not using prepared statements
- Moderate output escaping
EchBay For CocCoc Security Vulnerabilities
EchBay For CocCoc Code Analysis
SQL Query Safety
Output Escaping
EchBay For CocCoc Attack Surface
WordPress Hooks 2
Maintenance & Trust
EchBay For CocCoc Maintenance & Trust
Maintenance Signals
Community Trust
EchBay For CocCoc Alternatives
PushAlert – Web Push Notifications for WordPress and WooCommerce
pushalert-web-push-notifications
A plugin by PushAlert to enable automated Push Notifications for your WordPress website and WooCommerce Store to increase traffic and sales.
Easy Smooth Scroll Links
scrolling-anchors
Create anchors and add up to to 30 scrolling animation effects to links that link to page anchors. You can set scroll speed and offset value.
Feedify – Web Push Notifications
push-notification-by-feedify
Engage your customer with Web Push Notifications. Send them personalised messages even when they aren't on your website.
Browser Blocker
browser-blocker
Browser Blocker allows you to pick and choose which browsers(versions) can access your web page and which ones are given a blocked splash screen.
Cache Manifest for WordPress Themes
cache-manifest-for-wordpress-themes
Use cache manifest in wordpress themes
EchBay For CocCoc Developer Profile
8 plugins · 2K total installs
How We Detect EchBay For CocCoc
Patterns used to identify this plugin on WordPress sites during automated security audits and web crawling.
Asset Fingerprints
/wp-content/plugins/echbay-for-coccoc/style.css/wp-content/plugins/echbay-for-coccoc/guest.html/wp-content/plugins/echbay-for-coccoc/js.js/wp-content/plugins/echbay-for-coccoc/admin.htmlechbay-for-coccoc/style.css?ver=HTML / DOM Fingerprints
coccoc-waring-user/* Custom CSS *//*body.coccoc-waring-user {padding-top: 0;+3 moreefc_plugin_urlefc_plugin_versionefc_custom_css_ebnoncestr_positionwindow.a_lert