Does Forum_wordpress_fr have any unpatched vulnerabilities?

No. All known vulnerabilities in Forum_wordpress_fr have been patched as of the latest data update. Always keep the plugin updated to the latest version.

Is Forum_wordpress_fr compatible with WordPress 5.4.19?

According to WordPress.org data, Forum_wordpress_fr 4.2 has been tested up to WordPress 5.4.19. Check the plugin's changelog for the latest compatibility information.

How often is Forum_wordpress_fr updated?

Forum_wordpress_fr was last updated on May 11, 2020. Frequent updates are generally a positive security signal.

What is Forum_wordpress_fr's security score?

Forum_wordpress_fr has a WP-Safety security score of 85/100. This score is computed from CVE history, patch response time, developer trust signals, and plugin maintenance activity.

Forum_wordpress_fr Security & Risk Analysis

wordpress.org/plugins/forum-wordpress-fr

Questionnaire du forum https://wpfr.net/support

400 active installs v4.2 PHP + WP 5.2+ Updated May 11, 2020

questionnaire-du-forum-https-wpfr-net-support

A · Safe

CVEs total0

Unpatched0

Last CVENever

Download

Safety Verdict

Is Forum_wordpress_fr Safe to Use in 2026?

Generally Safe

Score 85/100

Forum_wordpress_fr has no known CVEs and is actively maintained. It's a solid choice for most WordPress installations.

No known CVEs Updated 5yr ago

Risk Assessment

The 'forum-wordpress-fr' plugin version 4.2 exhibits a generally strong security posture based on the provided static analysis. It demonstrates excellent practices by having no identified dangerous functions, all SQL queries utilizing prepared statements, and no file operations or external HTTP requests. The absence of any vulnerabilities in its history, including no recorded CVEs or common vulnerability types, further reinforces this positive assessment. The plugin also has a minimal attack surface, with no AJAX handlers, REST API routes, shortcodes, or cron events, and importantly, none of these entry points are unprotected.

However, a significant concern arises from the complete lack of nonce checks and capability checks across all identified entry points. While the attack surface is currently zero, any future introduction of such entry points without these security mechanisms would create immediate vulnerabilities. The static analysis also indicates that 25% of output is not properly escaped, which, while not resulting in a critical or high severity taint flow in this analysis, could potentially lead to cross-site scripting (XSS) vulnerabilities if the unescaped data originates from user input. The lack of taint analysis results is also noted, suggesting that either the analysis tool was not comprehensive or that there are no exploitable data flow issues detected within the current scope.

In conclusion, 'forum-wordpress-fr' v4.2 is currently in a secure state with no known exploitable vulnerabilities or critical code weaknesses. Its adherence to secure coding practices for SQL and avoiding dangerous functions is commendable. The primary areas for improvement and potential future risk lie in implementing proper nonce and capability checks for any new or existing entry points, and ensuring all output is properly escaped to mitigate potential XSS risks. The clean vulnerability history is a positive indicator of developer diligence, but the identified gaps in authorization and output sanitization require attention.

Key Concerns

0 Nonce checks found
0 Capability checks found
25% of outputs not properly escaped

Vulnerabilities

None known

Forum_wordpress_fr Security Vulnerabilities

No known vulnerabilities — this is a good sign.

Code Analysis

Analyzed Mar 16, 2026

Forum_wordpress_fr Code Analysis

Dangerous Functions

Raw SQL Queries

0 prepared

Unescaped Output

3 escaped

Nonce Checks

Capability Checks

File Operations

External Requests

Bundled Libraries

Output Escaping

75% escaped4 total outputs

Attack Surface

Forum_wordpress_fr Attack Surface

Entry Points0

Unprotected0

WordPress Hooks 1

actionwp_dashboard_setupforum_wordpress_fr.php:29

Maintenance & Trust

Forum_wordpress_fr Maintenance & Trust

Maintenance Signals

WordPress version tested5.4.19

Last updatedMay 11, 2020

PHP min version

Downloads13K

Community Trust

Rating100/100

Number of ratings6

Active installs400

Alternatives

Forum_wordpress_fr Alternatives

No alternatives data available yet.

Developer Profile

Forum_wordpress_fr Developer Profile

arena

19 plugins · 2K total installs

trust score

Avg Security Score

87/100

Avg Patch Time

50 days

View full developer profile

Detection Fingerprints

How We Detect Forum_wordpress_fr

Patterns used to identify this plugin on WordPress sites during automated security audits and web crawling.

Asset Fingerprints

Asset Paths

/wp-content/plugins/forum-wordpress-fr/css/fwf.css/wp-content/plugins/forum-wordpress-fr/js/fwf.js

Script Paths

/wp-content/plugins/forum-wordpress-fr/js/fwf.js

Version Parameters

forum-wordpress-fr/css/fwf.css?ver=forum-wordpress-fr/js/fwf.js?ver=

HTML / DOM Fingerprints

CSS Classes

fwf_copyfwf_copied

HTML Comments

Data Attributes

data-clipboard-target

JS Globals

fwf_L10n

FAQ