Does EventON Promote have any unpatched vulnerabilities?

No. All known vulnerabilities in EventON Promote have been patched as of the latest data update. Always keep the plugin updated to the latest version.

Is EventON Promote compatible with WordPress 5.8.13?

According to WordPress.org data, EventON Promote 1.0.0 has been tested up to WordPress 5.8.13. Check the plugin's changelog for the latest compatibility information.

Is EventON Promote compatible with PHP 5.4+?

EventON Promote requires PHP 5.4 or higher. Most modern WordPress hosts run PHP 8.1 or 8.2. If you are on an older PHP version, consider upgrading before installing this plugin.

How often is EventON Promote updated?

EventON Promote was last updated on Jan 7, 2022. Frequent updates are generally a positive security signal.

What is EventON Promote's security score?

EventON Promote has a WP-Safety security score of 85/100. This score is computed from CVE history, patch response time, developer trust signals, and plugin maintenance activity.

EventON Promote Security & Risk Analysis

wordpress.org/plugins/eventon-promote

Promote your events. Get more engagement and clients by marketing your events using the promote addon.

10 active installs v1.0.0 PHP 5.4+ WP 5.0.0+ Updated Jan 7, 2022

eventonmarketingpopuppromoteslider

A · Safe

CVEs total0

Unpatched0

Last CVENever

Plugin page Download

Safety Verdict

Is EventON Promote Safe to Use in 2026?

Generally Safe

Score 85/100

EventON Promote has no known CVEs and is actively maintained. It's a solid choice for most WordPress installations.

No known CVEs Updated 4yr ago

Risk Assessment

The eventon-promote v1.0.0 plugin exhibits a generally good security posture, with no known vulnerabilities in its history and a strong adherence to best practices in the static analysis. The absence of known CVEs and the plugin's clean vulnerability history suggest a well-maintained and secure codebase over time. Static analysis reveals that all identified entry points (shortcodes) have potential for security checks, and SQL queries are exclusively handled using prepared statements, which is excellent. Furthermore, a high percentage of output escaping indicates a good defense against XSS vulnerabilities. The plugin also demonstrates responsible use of nonces and capability checks on its functions.

However, the presence of the `unserialize` function, even without observed taint flows, represents a potential risk. While taint analysis found no issues, the `unserialize` function can be a vector for remote code execution if it processes untrusted data. The limited attack surface of three shortcodes is a positive, but the lack of explicit authorization checks on these shortcodes, as indicated by '0 unprotected', is a weakness. Despite the robust SQL handling and output escaping, the potential for deserialization vulnerabilities remains a concern that requires careful monitoring and potentially remediation in future versions.

Key Concerns

Use of unserialize function
No auth checks on entry points
Minor unescaped output

Vulnerabilities

None known

EventON Promote Security Vulnerabilities

No known vulnerabilities — this is a good sign.

Code Analysis

Analyzed Mar 17, 2026

EventON Promote Code Analysis

Dangerous Functions

Raw SQL Queries

0 prepared

Unescaped Output

111 escaped

Nonce Checks

Capability Checks

File Operations

External Requests

Bundled Libraries

Dangerous Functions Found

unserialize$intervals = unserialize( $event_custom['repeat_intervals'][0] );includes\class-mmt-promote-frontend.php:377

Output Escaping

87% escaped127 total outputs

Attack Surface

EventON Promote Attack Surface

Entry Points3

Unprotected0

Shortcodes 3

[mmt_promote_event_popup] includes\class-mmt-promote-shortcode.php:21

[mmt_promote_event_slidein] includes\class-mmt-promote-shortcode.php:23

[mmt_promote_event_embed] includes\class-mmt-promote-shortcode.php:25

WordPress Hooks 21

actionenqueue_block_assetsblocks\src\class-mmt-promote-blocks-init.php:20

actionenqueue_block_editor_assetsblocks\src\class-mmt-promote-blocks-init.php:22

filterblock_categories_allblocks\src\class-mmt-promote-blocks-init.php:24

actioninitblocks\src\class-mmt-promote-blocks-init.php:26

actionplugins_loadedclass-mmt-promote.php:38

actionadmin_noticesclass-mmt-promote.php:50

actionadmin_menuclass-mmt-promote.php:53

actioninitclass-mmt-promote.php:57

actionwidgets_initclass-mmt-promote.php:112

actionadmin_enqueue_scriptsincludes\admin\class-mmt-promote-admin-init.php:13

actionmedia_buttonsincludes\admin\class-mmt-promote-admin-init.php:14

filtertiny_mce_versionincludes\admin\class-mmt-promote-admin-init.php:15

actionadmin_initincludes\admin\class-mmt-promote-admin-init.php:16

filtermce_external_pluginsincludes\admin\class-mmt-promote-admin-init.php:199

filtermce_buttonsincludes\admin\class-mmt-promote-admin-init.php:202

filterthe_contentincludes\class-mmt-promote-frontend.php:186

filterthe_contentincludes\class-mmt-promote-frontend.php:190

actioninitincludes\class-mmt-promote-script-style.php:13

actioninitincludes\class-mmt-promote-script-style.php:14

actionadmin_enqueue_scriptsincludes\class-mmt-promote-script-style.php:40

actionwp_footerincludes\class-mmt-promote-shortcode.php:47

Maintenance & Trust

EventON Promote Maintenance & Trust

Maintenance Signals

WordPress version tested5.8.13

Last updatedJan 7, 2022

PHP min version5.4

Downloads915

Community Trust

Rating0/100

Number of ratings0

Active installs10

Alternatives

EventON Promote Alternatives

Popup Builder & Popup Maker for WordPress – OptinMonster Email Marketing and Lead Generation

optinmonster

🤩 Make popups & optin forms to get more email newsletter subscribers, leads, and sales - #1 most popular popup builder plugin! 🚀

1.0M 6 CVEs

Popup Maker – Boost Sales, Conversions, Optins, Subscribers with the Ultimate WP Popups Builder

popup-maker

Want to boost sales & marketing efforts? Use your favorite forms & builder. Unlimited popups & impressions, keep your data, no monthly subscription.

700K 18 CVEs

Popups for Divi

popups-for-divi

100

A quick and easy way to create Popup layers inside the Divi Visual Builder!

100K No CVEs

Depicter — Popup & Slider Builder

depicter

Build Stunning Slider and Popup. Exit intent Popup, Image slider carousel, video slider carousel, post slider carousel, product slider, promote popup

90K 14 CVEs

Hustle – Email Marketing, Lead Generation, Optins, Popups

wordpress-popup

Setup email optin forms, popups, newsletter forms & subscription forms to generate email leads with the best marketing popup builder

90K 8 CVEs

Developer Profile

EventON Promote Developer Profile

Ashish

7 plugins · 700 total installs

trust score

Avg Security Score

90/100

Avg Patch Time

30 days

View full developer profile

Detection Fingerprints

How We Detect EventON Promote

Patterns used to identify this plugin on WordPress sites during automated security audits and web crawling.

Asset Fingerprints

Asset Paths

/wp-content/plugins/eventon-promote/assets/css/frontend.css/wp-content/plugins/eventon-promote/assets/js/frontend.js/wp-content/plugins/eventon-promote/assets/css/frontend-layout.css/wp-content/plugins/eventon-promote/assets/js/frontend-layout.js

Script Paths

/wp-content/plugins/eventon-promote/blocks/build/index.js

Version Parameters

/wp-content/plugins/eventon-promote/assets/css/frontend.css?ver=/wp-content/plugins/eventon-promote/assets/js/frontend.js?ver=/wp-content/plugins/eventon-promote/assets/css/frontend-layout.css?ver=/wp-content/plugins/eventon-promote/assets/js/frontend-layout.js?ver=/wp-content/plugins/eventon-promote/blocks/dist/blocks.style.build.css?ver=/wp-content/plugins/eventon-promote/blocks/build/index.js?ver=/wp-content/plugins/eventon-promote/blocks/build/index.css?ver=

HTML / DOM Fingerprints

CSS Classes

mmt-promote-popup-containermmt-promote-slidein-containermmt-promote-embed-container

Data Attributes

data-event-iddata-load-timedata-optin

JS Globals

mmt_promote_block_plans_fm

Shortcode Output

[mmt_promote_event_popup[mmt_promote_event_slidein[mmt_promote_event_embed

FAQ