Does Eonet Frontend Publisher have any unpatched vulnerabilities?

No. All known vulnerabilities in Eonet Frontend Publisher have been patched as of the latest data update. Always keep the plugin updated to the latest version.

Is Eonet Frontend Publisher compatible with WordPress 4.7.32?

According to WordPress.org data, Eonet Frontend Publisher 1.0.11 has been tested up to WordPress 4.7.32. Check the plugin's changelog for the latest compatibility information.

How often is Eonet Frontend Publisher updated?

Eonet Frontend Publisher was last updated on Feb 22, 2018. Frequent updates are generally a positive security signal.

What is Eonet Frontend Publisher's security score?

Eonet Frontend Publisher has a WP-Safety security score of 85/100. This score is computed from CVE history, patch response time, developer trust signals, and plugin maintenance activity.

Eonet Frontend Publisher Security & Risk Analysis

wordpress.org/plugins/eonet-frontend-publisher

Create and Edit any WordPress post type, easily with Eonet. Manage permissions as well.

30 active installs v1.0.11 PHP + WP 3.0.1+ Updated Feb 22, 2018

ajaxcreateeditfrontendlive

A · Safe

CVEs total0

Unpatched0

Last CVENever

Plugin page Download

Safety Verdict

Is Eonet Frontend Publisher Safe to Use in 2026?

Generally Safe

Score 85/100

Eonet Frontend Publisher has no known CVEs and is actively maintained. It's a solid choice for most WordPress installations.

No known CVEs Updated 8yr ago

Risk Assessment

The eonet-frontend-publisher plugin v1.0.11 exhibits a mixed security posture. On the positive side, it demonstrates good practices by exclusively using prepared statements for SQL queries and shows no known historical vulnerabilities. However, significant concerns are raised by the presence of an unprotected AJAX handler, which represents a direct entry point for potential attacks without any authentication or authorization checks. Additionally, the use of the `unserialize` function, while not immediately indicating a specific vulnerability without taint analysis to confirm, is a known risk factor that can lead to deserialization vulnerabilities if the serialized data originates from an untrusted source. The limited taint analysis results (2 flows analyzed) don't reveal critical issues, but the lack of comprehensive taint analysis or more robust code scanning might mask potential problems.

Key Concerns

AJAX handler without authentication
Use of dangerous function: unserialize
Low percentage of properly escaped output
Missing capability checks

Vulnerabilities

None known

Eonet Frontend Publisher Security Vulnerabilities

No known vulnerabilities — this is a good sign.

Code Analysis

Analyzed Mar 16, 2026

Eonet Frontend Publisher Code Analysis

Dangerous Functions

Raw SQL Queries

0 prepared

Unescaped Output

88 escaped

Nonce Checks

Capability Checks

File Operations

External Requests

Bundled Libraries

Dangerous Functions Found

unserialize$val = unserialize($val);core\EonetMetaboxes.php:89

Output Escaping

67% escaped131 total outputs

Data Flows

All sanitized

Data Flow Analysis

2 flows

ajaxProcessForm (component-frontend-publisher\EonetFrontendPublisher.php:309)

Source (user input) Sink (dangerous op) Sanitizer Transform Unsanitized Sanitized

Attack Surface

1 unprotected

Eonet Frontend Publisher Attack Surface

Entry Points15

Unprotected1

AJAX Handlers 14

authwp_ajax_eonet_fetch_formcomponent-frontend-publisher\EonetFrontendPublisher.php:32

noprivwp_ajax_eonet_fetch_formcomponent-frontend-publisher\EonetFrontendPublisher.php:33

authwp_ajax_eonet_process_formcomponent-frontend-publisher\EonetFrontendPublisher.php:34

noprivwp_ajax_eonet_process_formcomponent-frontend-publisher\EonetFrontendPublisher.php:35

authwp_ajax_eonet_delete_formcomponent-frontend-publisher\EonetFrontendPublisher.php:36

noprivwp_ajax_eonet_delete_formcomponent-frontend-publisher\EonetFrontendPublisher.php:37

authwp_ajax_eonet_admin_get_pagecore\admin\EonetAdmin.php:28

noprivwp_ajax_eonet_admin_get_pagecore\admin\EonetAdmin.php:29

authwp_ajax_eonet_admin_save_settingscore\admin\EonetAdmin.php:30

noprivwp_ajax_eonet_admin_save_settingscore\admin\EonetAdmin.php:31

authwp_ajax_eonet_admin_reset_settingscore\admin\EonetAdmin.php:32

noprivwp_ajax_eonet_admin_reset_settingscore\admin\EonetAdmin.php:33

authwp_ajax_eonet_admin_state_componentcore\EonetComponents.php:44

noprivwp_ajax_eonet_admin_state_componentcore\EonetComponents.php:45

Shortcodes 1

[eonet_frontend_create] component-frontend-publisher\EonetFrontendPublisher.php:39

WordPress Hooks 16

filterthe_contentcomponent-frontend-publisher\EonetFrontendPublisher.php:29

actionwp_enqueue_scriptscomponent-frontend-publisher\EonetFrontendPublisher.php:31

actioneonet_before_frontend_buttoncomponent-frontend-publisher\EonetFrontendPublisher.php:41

actionplugins_loadedcomponent-frontend-publisher\init.php:8

actionadmin_menucore\admin\EonetAdmin.php:34

actionplugins_loadedcore\bootstrap.php:11

actionadmin_enqueue_scriptscore\Eonet.php:33

actionwp_enqueue_scriptscore\Eonet.php:34

actionadmin_enqueue_scriptscore\Eonet.php:35

actionwp_enqueue_scriptscore\Eonet.php:36

actionadmin_initcore\EonetComponents.php:40

actioninitcore\EonetComponents.php:41

actionwp_enqueue_scriptscore\EonetComponents.php:55

actionadmin_enqueue_scriptscore\EonetComponents.php:56

actionadd_meta_boxescore\EonetMetaboxes.php:53

actionsave_postcore\EonetMetaboxes.php:55

Maintenance & Trust

Eonet Frontend Publisher Maintenance & Trust

Maintenance Signals

WordPress version tested4.7.32

Last updatedFeb 22, 2018

PHP min version

Downloads9K

Community Trust

Rating100/100

Number of ratings3

Active installs30

Alternatives

Eonet Frontend Publisher Alternatives

Eloquent

eloquent

Eloquent is an awesome front-end editor for your website.

10 No CVEs

SiteOrigin CSS

so-css

100

Powerful, simple CSS editing for WordPress. Visual controls & real-time previews for effortless site customization.

100K No CVEs

Classic Editor +

classic-editor-addon

The "Classic Editor +" plugin disables the block editor, removes enqueued scripts/styles and brings back classic Widgets.

50K 1 CVE

SearchWP Live Ajax Search

searchwp-live-ajax-search

Template powered live search for any WordPress theme. Does not require SearchWP, but will utilize it if available.

50K 2 CVEs

Frontend Admin by DynamiApps

acf-frontend-form-element

This awesome plugin allows you to easily display frontend forms on your site so your clients can easily edit content by themselves from the frontend.

10K 13 CVEs

Developer Profile

Eonet Frontend Publisher Developer Profile

Alkaweb

4 plugins · 510 total installs

trust score

Avg Security Score

85/100

Avg Patch Time

30 days

View full developer profile

Detection Fingerprints

How We Detect Eonet Frontend Publisher

Patterns used to identify this plugin on WordPress sites during automated security audits and web crawling.

Asset Fingerprints

Asset Paths

/wp-content/plugins/eonet-frontend-publisher/core/assets/js/eonet_frontend_publisher.js

Script Paths

/wp-content/plugins/eonet-frontend-publisher/core/assets/js/eonet_frontend_publisher.js

HTML / DOM Fingerprints

CSS Classes

eo_btneo_btn_lefteo_modal_canceleo_btn_infoeo_closeeo_modal_deleteeo_modal_kickstarteo_btn_success

Data Attributes

data-post-id

JS Globals

EONET_FRONTEND

REST Endpoints

/wp-json/eonet/v1/frontend/publish

Shortcode Output

[eonet_frontend_create

FAQ