WP-Safety

eMail Signature Manager Security & Risk Analysis

wordpress.org/plugins/email-signature-manager

An eMail Signature Manager for WordPress.

10 active installs v1.1.1 PHP 5.4+ WP 4.7+ Updated May 17, 2019
call-to-actionemailgeneratormailsignature
85
A · Safe
CVEs total0
Unpatched0
Last CVENever
Download
Safety Verdict

Is eMail Signature Manager Safe to Use in 2026?

Generally Safe

Score 85/100

eMail Signature Manager has no known CVEs and is actively maintained. It's a solid choice for most WordPress installations.

No known CVEs Updated 7yr ago
Risk Assessment

The "email-signature-manager" plugin v1.1.1 exhibits a generally positive security posture with no recorded vulnerabilities or critical code signals. The absence of external HTTP requests and the use of prepared statements for all SQL queries are strong indicators of good security practices. However, the static analysis does reveal some areas for improvement. Specifically, the 58% proper output escaping rate suggests potential for cross-site scripting (XSS) vulnerabilities in approximately half of the output operations. Additionally, the presence of two taint flows with unsanitized paths, while not classified as critical or high severity, warrants attention as these could represent hidden vulnerabilities or future exploit vectors if not addressed. The plugin's limited attack surface and the absence of known CVEs are commendable strengths, but the identified output escaping and taint flow issues prevent it from achieving a perfect security score.

Key Concerns

  • Unsanitized paths in taint flows
  • Low percentage of properly escaped output
Vulnerabilities
None known

eMail Signature Manager Security Vulnerabilities

No known vulnerabilities — this is a good sign.
Version History

eMail Signature Manager Release Timeline

No version history available.
Code Analysis
Analyzed Mar 16, 2026

eMail Signature Manager Code Analysis

Dangerous Functions
0
Raw SQL Queries
0
0 prepared
Unescaped Output
25
35 escaped
Nonce Checks
0
Capability Checks
0
File Operations
1
External Requests
0
Bundled Libraries
0

Output Escaping

58% escaped60 total outputs
Data Flows · Security
2 unsanitized

Data Flow Analysis

2 flows2 with unsanitized paths
do_redirect (includes\class-emsg-redirect-plugin.php:449)
Source (user input) Sink (dangerous op) Sanitizer Transform Unsanitized Sanitized
Attack Surface

eMail Signature Manager Attack Surface

Entry Points0
Unprotected0
WordPress Hooks 20
actionplugins_loadedemail-signature-manager.php:21
actionadmin_noticesemail-signature-manager.php:24
actionadmin_noticesemail-signature-manager.php:26
actioninitincludes\class-emsg-company-plugin.php:60
actioncmb2_admin_initincludes\class-emsg-company-plugin.php:61
actionplugins_loadedincludes\class-emsg-i18n-plugin.php:35
actioninitincludes\class-emsg-person-plugin.php:26
actioncmb2_admin_initincludes\class-emsg-person-plugin.php:27
actionplugins_loadedincludes\class-emsg-plugin.php:21
actioninitincludes\class-emsg-plugin.php:22
actionadmin_enqueue_scriptsincludes\class-emsg-plugin.php:24
actionadmin_noticesincludes\class-emsg-plugin.php:25
actiontemplate_redirectincludes\class-emsg-plugin.php:26
actionadmin_menuincludes\class-emsg-plugin.php:27
actionsave_postincludes\class-emsg-plugin.php:28
actionsave_postincludes\class-emsg-plugin.php:83
actioninitincludes\class-emsg-redirect-plugin.php:28
actioncmb2_admin_initincludes\class-emsg-redirect-plugin.php:29
actiontemplate_redirectincludes\class-emsg-redirect-plugin.php:32
actionwp_mail_failedincludes\class-emsg-redirect-plugin.php:33
Maintenance & Trust

eMail Signature Manager Maintenance & Trust

Maintenance Signals

WordPress version tested5.2.24
Last updatedMay 17, 2019
PHP min version5.4
Downloads2K

Community Trust

Rating100/100
Number of ratings1
Active installs10
Alternatives

eMail Signature Manager Alternatives

Flamingo – Author Box Generator

Flamingo – Author Box Generator

flamingo-by-mailbird

A
85

Flamingo: Generate personalized email signatures and author bios for a professional touch to your brand across email clients and WordPress sites.

10 No CVEs
Add Email Signature

Add Email Signature

add-email-signature

A
100

This plugin adds a configurable signature to all outgoing emails from your WordPress site.

200 No CVEs
Flirty Leads

Flirty Leads

flirty-leads

A
85

Flirty Leads lets your site visitors respond your site images. Generate client lists, gain leads using your post/pages images.

10 No CVEs
Notification : Signature

Notification : Signature

signature-notification

A
100

Add your own Signature to Notification Emails

10 No CVEs
Stunning popups to increase conversion or capture subscribers

Stunning popups to increase conversion or capture subscribers

conversion-tool-by-convkit

A
85

Stunning popups to capture subscribers, increase your conversion or generate leads. Increase your conversion and sales with a 30-day free trial.

0 No CVEs
Developer Profile

eMail Signature Manager Developer Profile

Jean-Christophe Kermagoret

1 plugin · 10 total installs

84
trust score
Avg Security Score
85/100
Avg Patch Time
30 days
View full developer profile
Detection Fingerprints

How We Detect eMail Signature Manager

Patterns used to identify this plugin on WordPress sites during automated security audits and web crawling.

Asset Fingerprints

Asset Paths
/wp-content/plugins/email-signature-manager/assets/css/emsg-admin.css/wp-content/plugins/email-signature-manager/assets/js/emsg-admin.js
Script Paths
/wp-content/plugins/email-signature-manager/assets/js/emsg-admin.js
Version Parameters
email-signature-manager/assets/css/emsg-admin.css?ver=email-signature-manager/assets/js/emsg-admin.js?ver=

HTML / DOM Fingerprints

CSS Classes
emsg-admin-css
Data Attributes
emsgAdminL10n
JS Globals
emsgAdminL10n
FAQ

Frequently Asked Questions about eMail Signature Manager