Does Informational Popup Plugin have any unpatched vulnerabilities?

No. All known vulnerabilities in Informational Popup Plugin have been patched as of the latest data update. Always keep the plugin updated to the latest version.

Is Informational Popup Plugin compatible with WordPress 3.3.2?

According to WordPress.org data, Informational Popup Plugin 1.0 has been tested up to WordPress 3.3.2. Check the plugin's changelog for the latest compatibility information.

How often is Informational Popup Plugin updated?

Informational Popup Plugin was last updated on Unknown. Frequent updates are generally a positive security signal.

What is Informational Popup Plugin's security score?

Informational Popup Plugin has a WP-Safety security score of 100/100. This score is computed from CVE history, patch response time, developer trust signals, and plugin maintenance activity.

Informational Popup Plugin Security & Risk Analysis

wordpress.org/plugins/informational-popup

Informational Popup. Create dynamic foot notes, explore digressions, extend your posts.

10 active installs v1.0 PHP + WP 2.8+ Updated Unknown

popupshortcodesimplevideowindow

A · Safe

CVEs total0

Unpatched0

Last CVENever

Download

Safety Verdict

Is Informational Popup Plugin Safe to Use in 2026?

Generally Safe

Score 100/100

Informational Popup Plugin has no known CVEs and is actively maintained. It's a solid choice for most WordPress installations.

No known CVEs

Risk Assessment

The "informational-popup" plugin version 1.0 presents a mixed security profile. On the positive side, it exhibits excellent practices regarding database interaction, using prepared statements exclusively, and it has no known vulnerabilities or CVEs. The attack surface is also minimal, with only one shortcode identified and no AJAX handlers or REST API routes without authentication checks. Furthermore, the absence of file operations and external HTTP requests reduces potential attack vectors. However, a significant concern arises from the complete lack of output escaping. This means that any data processed by the plugin and subsequently displayed to users is not sanitized, making it highly susceptible to Cross-Site Scripting (XSS) attacks. Additionally, the taint analysis revealed a flow with an unsanitized path, which, while not classified as critical or high severity in this analysis, warrants attention. The absence of nonce and capability checks is another area of weakness, though the limited attack surface mitigates the immediate risk.

Key Concerns

0% output escaping
Taint flow with unsanitized path
0 Nonce checks
0 Capability checks

Vulnerabilities

None known

Informational Popup Plugin Security Vulnerabilities

No known vulnerabilities — this is a good sign.

Code Analysis

Analyzed Mar 16, 2026

Informational Popup Plugin Code Analysis

Dangerous Functions

Raw SQL Queries

0 prepared

Unescaped Output

0 escaped

Nonce Checks

Capability Checks

File Operations

External Requests

Bundled Libraries

Output Escaping

0% escaped23 total outputs

Data Flows

1 unsanitized

Data Flow Analysis

1 flows1 with unsanitized paths

<info_popup_set_options> (info_popup_set_options.php:0)

Source (user input) Sink (dangerous op) Sanitizer Transform Unsanitized Sanitized

Attack Surface

Informational Popup Plugin Attack Surface

Entry Points1

Unprotected0

Shortcodes 1

[info_popup] info_popup_main.php:141

WordPress Hooks 4

actionwp_dashboard_setupinfo_popup_main.php:161

actionwp_enqueue_scriptsinfo_popup_main.php:185

actionadmin_menuinfo_popup_main.php:194

actionadmin_initinfo_popup_main.php:413

Maintenance & Trust

Informational Popup Plugin Maintenance & Trust

Maintenance Signals

WordPress version tested3.3.2

Last updatedUnknown

PHP min version

Downloads12K

Community Trust

Rating60/100

Number of ratings2

Active installs10

Alternatives

Informational Popup Plugin Alternatives

Alligator Menu Popup

alligator-menu-popup

100

Add the 'mpopup' class to a menu item in a custom menu to open the target in a popup Window.

600 No CVEs

Alligator Popup

alligator-popup

100

Add popups to your site. Add links to pages/posts via a shortcode which will be opened in a popup browser window.

2K No CVEs

Video Lightbox for YouTube/Vimeo

youtubefancybox

Embed YouTube/Vimeo videos in a lightbox popup. Easily create thumbnails and customize playback settings. Supports both platforms and is compatible wi …

100 No CVEs

Smart Popup

smart-popup

Smart Popup:: an exclusive popup (Modal) plugin for WordPress. You can show any content in your wordpress post or page as popup.

10 No CVEs

Video PopUp

video-popup

100

The ultimate Video Popup plugin for WordPress. Create unlimited and responsive popups for YouTube, Vimeo, MP4 & WebM videos on click or On-Page Load.

20K 1 CVE

Developer Profile

Informational Popup Plugin Developer Profile

joshkeen

1 plugin · 10 total installs

trust score

Avg Security Score

100/100

Avg Patch Time

30 days

View full developer profile

Detection Fingerprints

How We Detect Informational Popup Plugin

Patterns used to identify this plugin on WordPress sites during automated security audits and web crawling.

Asset Fingerprints

Asset Paths

/wp-content/plugins/informational-popup/farbtastic.js/wp-content/plugins/informational-popup/info_popup.js

Script Paths

http://ajax.googleapis.com/ajax/libs/jquery/1.7.1/jquery.min.jshttp://ajax.googleapis.com/ajax/libs/jqueryui/1.8/jquery-ui.min.js

HTML / DOM Fingerprints

CSS Classes

clicked_text_

HTML Comments

<!--<img src="<!--<div id="loading_video_<!--<img src="<!--<div id="loading_video_

Data Attributes

id="img_tag_id="popup_div_id="h2_id="h4_id="close_btn_id="loading_video_+1 more

JS Globals

deploy_info_popup_js

Shortcode Output

<span class="clicked_text_<div id="popup_div_<h2 id="h2_<div style="font-size:15px" id="h4_

FAQ