Does eMail 2 MailChimp [rus] have any unpatched vulnerabilities?

No. All known vulnerabilities in eMail 2 MailChimp [rus] have been patched as of the latest data update. Always keep the plugin updated to the latest version.

Is eMail 2 MailChimp [rus] compatible with WordPress 3.6.1?

According to WordPress.org data, eMail 2 MailChimp [rus] 1.0.9 has been tested up to WordPress 3.6.1. Check the plugin's changelog for the latest compatibility information.

How often is eMail 2 MailChimp [rus] updated?

eMail 2 MailChimp [rus] was last updated on Oct 19, 2013. Frequent updates are generally a positive security signal.

What is eMail 2 MailChimp [rus]'s security score?

eMail 2 MailChimp [rus] has a WP-Safety security score of 85/100. This score is computed from CVE history, patch response time, developer trust signals, and plugin maintenance activity.

eMail 2 MailChimp [rus] Security & Risk Analysis

wordpress.org/plugins/email-2-mailchimp

Плагин автоматически подписывает email комментатора в выбранный лист в сервисе MailChimp. Подтверждение подписки не требуется.

10 active installs v1.0.9 PHP + WP 3.0+ Updated Oct 19, 2013

emailmailchimpmailchimp-formmailchimp-optinmarketing

A · Safe

CVEs total0

Unpatched0

Last CVENever

Plugin page Download

Safety Verdict

Is eMail 2 MailChimp [rus] Safe to Use in 2026?

Generally Safe

Score 85/100

eMail 2 MailChimp [rus] has no known CVEs and is actively maintained. It's a solid choice for most WordPress installations.

No known CVEs Updated 12yr ago

Risk Assessment

The "email-2-mailchimp" plugin v1.0.9 demonstrates a strong security posture in several key areas. The static analysis reveals zero entry points that are unprotected, no dangerous functions used, and all SQL queries are properly prepared, indicating a good understanding of secure coding practices. The absence of any known CVEs or historical vulnerabilities further reinforces this positive assessment. The plugin also implements a reasonable number of nonce checks.

However, a significant concern arises from the low percentage of properly escaped output. With only 45% of outputs being correctly escaped, there is a substantial risk of Cross-Site Scripting (XSS) vulnerabilities. This means user-supplied data could potentially be injected into the output and executed by a user's browser. Additionally, the complete absence of capability checks is a weakness, as it means sensitive operations, if any exist, are not protected by user roles. While the attack surface appears small and contained, the lack of robust output sanitization is the most pressing issue.

Key Concerns

Low output escaping percentage
No capability checks

Vulnerabilities

None known

eMail 2 MailChimp [rus] Security Vulnerabilities

No known vulnerabilities — this is a good sign.

Code Analysis

Analyzed Mar 17, 2026

eMail 2 MailChimp [rus] Code Analysis

Dangerous Functions

Raw SQL Queries

0 prepared

Unescaped Output

21 escaped

Nonce Checks

Capability Checks

File Operations

External Requests

Bundled Libraries

Output Escaping

45% escaped47 total outputs

Attack Surface

eMail 2 MailChimp [rus] Attack Surface

Entry Points0

Unprotected0

WordPress Hooks 8

actioninitemail-2-mailchimp.php:153

actionadmin_initemail-2-mailchimp.php:177

actionadmin_initemail-2-mailchimp.php:179

actionadmin_menuemail-2-mailchimp.php:181

actionadmin_enqueue_scriptsemail-2-mailchimp.php:183

actioncomment_formemail-2-mailchimp.php:189

actioncomment_postemail-2-mailchimp.php:191

filterpreprocess_commentemail-2-mailchimp.php:193

Maintenance & Trust

eMail 2 MailChimp [rus] Maintenance & Trust

Maintenance Signals

WordPress version tested3.6.1

Last updatedOct 19, 2013

PHP min version

Downloads2K

Community Trust

Rating0/100

Number of ratings0

Active installs10

Alternatives

eMail 2 MailChimp [rus] Alternatives

MailChimp Comment Optin

mailchimp-comment-optin

This plugin allows you to insert a checkbox at the end of your comment forms so your viewers can double optin to a MailChimp list of your choosing.

90 No CVEs

Mailchimp List Subscribe Form

mailchimp

Add a Mailchimp signup form block, widget, or shortcode to your WordPress site.

60K 1 CVE

Block for Mailchimp – Add Email Subscription Forms and Collect Leads

block-for-mailchimp

Add a custom email newsletter or subscription form to your WordPress site and connect it with Mailchimp to quickly grow your audience.

2K 1 CVE

Quform Mailchimp

quform-mailchimp

100

Easily add contacts to Mailchimp from Quform forms.

900 No CVEs

MailChimp Campaign Archive

mailchimp-campaign-archive

Adds a [mailchimp_campaigns] shortcode that lists your latest MailChimp email campaigns

200 No CVEs

Developer Profile

eMail 2 MailChimp [rus] Developer Profile

Ars

7 plugins · 250 total installs

trust score

Avg Security Score

96/100

Avg Patch Time

30 days

View full developer profile

Detection Fingerprints

How We Detect eMail 2 MailChimp [rus]

Patterns used to identify this plugin on WordPress sites during automated security audits and web crawling.

Asset Fingerprints

Asset Paths

/wp-content/plugins/email-2-mailchimp/css/tgm-mc-optin.css/wp-content/plugins/email-2-mailchimp/js/tgm-mc-optin.js

Script Paths

/wp-content/plugins/email-2-mailchimp/js/tgm-mc-optin.js

Version Parameters

email-2-mailchimp/css/tgm-mc-optin.css?ver=email-2-mailchimp/js/tgm-mc-optin.js?ver=

HTML / DOM Fingerprints

CSS Classes

tgm-mc-optin-checkbox

Data Attributes

name="tgm_mc_get_api_key"name="tgm_mc_action"nonce="tgm_mc_logout_nonce"

JS Globals

tgm_mc_options

FAQ