Does FanBridge signup have any unpatched vulnerabilities?

Yes — FanBridge signup currently has 1 unpatched vulnerability. We recommend switching to an alternative or applying any available workarounds.

Is FanBridge signup compatible with WordPress 3.9.40?

According to WordPress.org data, FanBridge signup 0.6 has been tested up to WordPress 3.9.40. Check the plugin's changelog for the latest compatibility information.

Is FanBridge signup compatible with PHP 5.6+?

FanBridge signup requires PHP 5.6 or higher. Most modern WordPress hosts run PHP 8.1 or 8.2. If you are on an older PHP version, consider upgrading before installing this plugin.

How often is FanBridge signup updated?

FanBridge signup was last updated on Jun 29, 2018. Frequent updates are generally a positive security signal.

What is FanBridge signup's security score?

FanBridge signup has a WP-Safety security score of 63/100. This score is computed from CVE history, patch response time, developer trust signals, and plugin maintenance activity.

FanBridge signup Security & Risk Analysis

wordpress.org/plugins/fanbridge-signup

The FanBridge Signup plugin allows you to add an email signup form to your Wordpress blog

60 active installs v0.6 PHP 5.6+ WP 3.0+ Updated Jun 29, 2018

emailfanbridgefansnewslettersignup

C · Use Caution

CVEs total1

Unpatched1

Last CVEOct 23, 2025

Plugin page Download

Safety Verdict

Is FanBridge signup Safe to Use in 2026?

Use With Caution

Score 63/100

FanBridge signup has 1 unpatched vulnerability. Evaluate alternatives or apply available mitigations.

1 known CVE 1 unpatched Last CVE: Oct 23, 2025Updated 7yr ago

Risk Assessment

The fanbridge-signup plugin v0.6 exhibits a mixed security posture. On the positive side, the static analysis shows no direct attack surface from AJAX handlers, REST API routes, shortcodes, or cron events, and all SQL queries are prepared. Taint analysis reveals no critical or high severity flows. However, there are significant concerns regarding output escaping, with only 5% of outputs being properly sanitized, indicating a high potential for Cross-Site Scripting (XSS) vulnerabilities. Furthermore, the plugin has a history of known vulnerabilities, including one unpatched medium severity issue (likely CSRF based on past trends), which suggests a pattern of security oversights that need addressing. The lack of capability checks and nonce checks on its entry points, though currently zero, could become a problem if any entry points are introduced in the future without proper security measures. While the current attack surface appears minimal, the poor output escaping and past vulnerability history are considerable risks.

Key Concerns

Unpatched medium vulnerability
Low percentage of properly escaped output
No capability checks
No nonce checks

Vulnerabilities

FanBridge signup Security Vulnerabilities

CVEs by Year

1 CVE in 2025 · unpatched

2025

Patched Has unpatched

Severity Breakdown

Medium

1 total CVE

CVE-2025-62986medium · 4.3Cross-Site Request Forgery (CSRF)

FanBridge signup <= 0.6 - Cross-Site Request Forgery

Oct 23, 2025Unpatched

Code Analysis

Analyzed Mar 16, 2026

FanBridge signup Code Analysis

Dangerous Functions

Raw SQL Queries

0 prepared

Unescaped Output

2 escaped

Nonce Checks

Capability Checks

File Operations

External Requests

Bundled Libraries

Output Escaping

5% escaped44 total outputs

Data Flows

4 unsanitized

Data Flow Analysis

4 flows4 with unsanitized paths

fbridge_plugin_request_handler (fanbridge-signup.php:89)

Source (user input) Sink (dangerous op) Sanitizer Transform Unsanitized Sanitized

Attack Surface

FanBridge signup Attack Surface

Entry Points0

Unprotected0

WordPress Hooks 12

actioninitfanbridge-signup.php:29

actionadmin_menufanbridge-signup.php:35

actioninitfanbridge-signup.php:55

actionwidgets_initfanbridge-signup.php:82

actioninitfanbridge-signup.php:155

actionadmin_headfanbridge-signup.php:167

actioninittrunk\fanbridge-signup.php:29

actionadmin_menutrunk\fanbridge-signup.php:35

actioninittrunk\fanbridge-signup.php:55

actionwidgets_inittrunk\fanbridge-signup.php:82

actioninittrunk\fanbridge-signup.php:155

actionadmin_headtrunk\fanbridge-signup.php:167

Maintenance & Trust

FanBridge signup Maintenance & Trust

Maintenance Signals

WordPress version tested3.9.40

Last updatedJun 29, 2018

PHP min version5.6

Downloads6K

Community Trust

Rating60/100

Number of ratings1

Active installs60

Alternatives

FanBridge signup Alternatives

Newsletter – Send awesome emails from WordPress

newsletter

An email marketing tool for your blog: subscription forms to create your lists with unlimited subscribers and newsletters.

200K 20 CVEs

Mailchimp List Subscribe Form

mailchimp

Add a Mailchimp signup form block, widget, or shortcode to your WordPress site.

60K 1 CVE

Mailjet Email Marketing

mailjet-for-wordpress

100

Includes WooCommerce automated and order emails. Design, send and track engaging marketing and transactional emails from your WordPress admin.

10K 1 CVE

Mailster WordPress Newsletter Plugin

mailster

Send beautiful newsletters from WordPress. Collect subscribers with signup forms, automate your emails for WooCommerce, blog post notifications & …

9K 5 CVEs

Sender – Newsletter, SMS and Email Marketing Automation for WooCommerce

sender-net-automated-emails

Sender is an all-in-one email & SMS marketing platform designed keeping the challenges of ecommerce and small businesses in mind.

5K 2 CVEs

Developer Profile

FanBridge signup Developer Profile

FanBridge

1 plugin · 60 total installs

trust score

Avg Security Score

63/100

Avg Patch Time

30 days

View full developer profile

Detection Fingerprints

How We Detect FanBridge signup

Patterns used to identify this plugin on WordPress sites during automated security audits and web crawling.

Asset Fingerprints

Asset Paths

/wp-content/plugins/fanbridge-signup/css/admin.css/wp-content/plugins/fanbridge-signup/css/jquery.miniColors.css/wp-content/plugins/fanbridge-signup/js/jquery.miniColors.min.js/wp-content/plugins/fanbridge-signup/js/jquery.validate.min.js/wp-content/plugins/fanbridge-signup/js/css_browser_selector.js

Script Paths

/wp-content/plugins/fanbridge-signup/js/jquery.validate.min.js/wp-content/plugins/fanbridge-signup/js/css_browser_selector.js/wp-content/plugins/fanbridge-signup/js/jquery.miniColors.min.js

Version Parameters

fanbridge-signup/style.css?ver=fanbridge-signup/js/jquery.validate.min.js?cb=fanbridge-signup/js/css_browser_selector.js?cb=fanbridge-signup/js/jquery.miniColors.min.js?cb=fanbridge-signup/css/admin.css?cb=fanbridge-signup/css/jquery.miniColors.css?cb=

HTML / DOM Fingerprints

CSS Classes

fanbridgeConfigtextInputcalloutsection

Data Attributes

name="_fbridge_action"value="widget-css"name="_fbridge_action"value="save-settings"name="FBSG_SN_USER_ID"name="FBSG_SN_FORM_TITLE"+26 more

JS Globals

FBSG_PLUGIN_URLFBSG_PLUGIN_VERSIONFBSG_FORM_PREFIXFBSG_SN_USER_IDFBSG_SN_FORM_TITLEFBSG_HIGHLIGHT_COLOR+11 more

FAQ