Does EmailCraft have any unpatched vulnerabilities?

No. All known vulnerabilities in EmailCraft have been patched as of the latest data update. Always keep the plugin updated to the latest version.

Is EmailCraft compatible with WordPress 6.8.5?

According to WordPress.org data, EmailCraft 0.0.1 has been tested up to WordPress 6.8.5. Check the plugin's changelog for the latest compatibility information.

Is EmailCraft compatible with PHP 7.4+?

EmailCraft requires PHP 7.4 or higher. Most modern WordPress hosts run PHP 8.1 or 8.2. If you are on an older PHP version, consider upgrading before installing this plugin.

How often is EmailCraft updated?

EmailCraft was last updated on Unknown. Frequent updates are generally a positive security signal.

What is EmailCraft's security score?

EmailCraft has a WP-Safety security score of 100/100. This score is computed from CVE history, patch response time, developer trust signals, and plugin maintenance activity.

EmailCraft Security & Risk Analysis

wordpress.org/plugins/emailcraft

Design stunning, responsive email templates with intuitive drag-and-drop blocks. Professional results, no coding required.

0 active installs v0.0.1 PHP 7.4+ WP 6.5+ Updated Unknown

email-designemail-template-builderemail-templates

A · Safe

CVEs total0

Unpatched0

Last CVENever

Download

Safety Verdict

Is EmailCraft Safe to Use in 2026?

Generally Safe

Score 100/100

EmailCraft has no known CVEs and is actively maintained. It's a solid choice for most WordPress installations.

No known CVEs

Risk Assessment

Based on the provided static analysis and vulnerability history, the Emailcraft plugin v0.0.1 exhibits a generally strong security posture. The plugin has no known vulnerabilities, including no recorded CVEs, which is a significant positive indicator. The code analysis reveals a minimal attack surface with zero entry points identified, and importantly, zero unprotected entry points. This suggests a conscious effort to prevent direct unauthorized access. Furthermore, all SQL queries are using prepared statements, which is excellent practice for preventing SQL injection. Capability checks are present, further bolstering the plugin's defenses against unauthorized actions.

Key Concerns

Missing nonce checks on file operations
Improper output escaping on 1 out of 3 outputs
File operations without clear authorization checks

Vulnerabilities

None known

EmailCraft Security Vulnerabilities

No known vulnerabilities — this is a good sign.

Code Analysis

Analyzed Mar 17, 2026

EmailCraft Code Analysis

Dangerous Functions

Raw SQL Queries

0 prepared

Unescaped Output

2 escaped

Nonce Checks

Capability Checks

File Operations

External Requests

Bundled Libraries

Output Escaping

67% escaped3 total outputs

Attack Surface

EmailCraft Attack Surface

Entry Points0

Unprotected0

WordPress Hooks 15

filteremailcraft_is_test_emailapp\Http\Controllers\Admin\TestEmailController.php:26

actioninitapp\Providers\BlockServiceProvider.php:11

actionadmin_menuapp\Providers\MenuServiceProvider.php:12

actioninitapp\Providers\PostTypeServiceProvider.php:11

filterallowed_block_types_allapp\Providers\PostTypeServiceProvider.php:12

actionadmin_initapp\Providers\PostTypeServiceProvider.php:13

filterblock_categories_allapp\Providers\PostTypeServiceProvider.php:14

filteremailcraft_smarttag_tagsapp\Providers\SmartTagServiceProvider.php:12

filterwp_new_user_notification_emailapp\Providers\WpServiceProvider.php:12

filterwp_new_user_notification_email_adminapp\Providers\WpServiceProvider.php:13

filterretrieve_password_notification_emailapp\Providers\WpServiceProvider.php:14

filterpassword_change_emailapp\Providers\WpServiceProvider.php:15

filterwp_password_change_notification_emailapp\Providers\WpServiceProvider.php:16

filteremail_change_emailapp\Providers\WpServiceProvider.php:17

actionplugins_loadedemailcraft.php:53

Maintenance & Trust

EmailCraft Maintenance & Trust

Maintenance Signals

WordPress version tested6.8.5

Last updatedUnknown

PHP min version7.4

Downloads161

Community Trust

Rating0/100

Number of ratings0

Active installs0

Alternatives

EmailCraft Alternatives

Email Templates Customizer and Designer for WordPress and WooCommerce

email-templates

Design and send custom emails with Email Templates plugin for WordPress and WooCommerce

20K 2 CVEs

Advanced Emailing for WooCommerce

advanced-emailing-for-woocommerce

100

Customize your WooCommerce emails or create new one that are sent when a condition is met.

20 No CVEs

Triangle – Email Template Builder

triangle-email-template

Drag and drop email template editor for wordpress.

10 No CVEs

Email Design Studio

email-design-studio

create and customize powerful email design and templates for your customers.

0 No CVEs

Kadence WooCommerce Email Designer

kadence-woocommerce-email-designer

Customize the default WooCommerce email templates design and text through the native WordPress customizer. Preview emails and send test emails.

100K 5 CVEs

Developer Profile

EmailCraft Developer Profile

Crafium

3 plugins · 1K total installs

trust score

Avg Security Score

100/100

Avg Patch Time

30 days

View full developer profile

Detection Fingerprints

How We Detect EmailCraft

Patterns used to identify this plugin on WordPress sites during automated security audits and web crawling.

Asset Fingerprints

Asset Paths

/wp-content/plugins/emailcraft/app/View/email.php/wp-content/plugins/emailcraft/app/templates/default/welcome/content.txt/wp-content/plugins/emailcraft/app/templates/default/welcome/settings.json

HTML / DOM Fingerprints

HTML Comments

JS Globals

emailcraft

REST Endpoints

/wp-json/emailcraft/v1/templates/wp-json/emailcraft/v1/templates/store/wp-json/emailcraft/v1/templates/(?P<id>\d+)/status

FAQ