Does Infusionsoft Exit Optin have any unpatched vulnerabilities?

No published vulnerabilities and no findings under coordinated disclosure as of the latest data update. Always keep the plugin updated to the latest version.

Is Infusionsoft Exit Optin compatible with WordPress 4.1.42?

According to WordPress.org data, Infusionsoft Exit Optin 1.0.4 has been tested up to WordPress 4.1.42. Check the plugin's changelog for the latest compatibility information.

How often is Infusionsoft Exit Optin updated?

Infusionsoft Exit Optin was last updated on Dec 18, 2014. Frequent updates are generally a positive security signal.

What is Infusionsoft Exit Optin's security score?

Infusionsoft Exit Optin has a WP-Safety security score of 85/100. This score is computed from CVE history, patch response time, developer trust signals, and plugin maintenance activity.

Infusionsoft Exit Optin Security & Risk Analysis

wordpress.org/plugins/infusionsoft-exit-optin

Pop-up an Infusionsoft web form when your visitor goes to leave your site.

10 active installs v1.0.4 PHP + WP 2.7+ Updated Dec 18, 2014

exitinfusionsoftintentjavascriptoptin

A · Safe

CVEs total0

Unpatched0

Last CVENever

Plugin page Download

Safety Verdict

Is Infusionsoft Exit Optin Safe to Use in 2026?

Generally Safe

Score 85/100

Infusionsoft Exit Optin has no known CVEs and is actively maintained. It's a solid choice for most WordPress installations.

No known CVEs Updated 11yr ago

Risk Assessment

The "infusionsoft-exit-optin" v1.0.4 plugin exhibits a mixed security posture. On the positive side, it has no known vulnerabilities, no recorded common vulnerability types, and zero attack surface from AJAX handlers, REST API routes, shortcodes, or cron events. Furthermore, all SQL queries are properly prepared, and there are no file operations or external HTTP requests, which are generally good security practices. However, the plugin does have significant areas of concern. The presence of two "dangerous functions," specifically `unserialize`, without any apparent nonce or capability checks is a critical red flag. This function, when used with untrusted input, can lead to Remote Code Execution vulnerabilities. The low percentage of properly escaped output (8%) also indicates a risk of Cross-Site Scripting (XSS) vulnerabilities if user-supplied data is not handled carefully before being displayed.

Key Concerns

Use of unserialize without security checks
Low percentage of properly escaped output
No nonce checks for potential input vectors
No capability checks for potential input vectors

Vulnerabilities

None known

Infusionsoft Exit Optin Security Vulnerabilities

No known vulnerabilities — this is a good sign.

Version History

Infusionsoft Exit Optin Release Timeline

v1.0.4Current

v1.0.3

v1.0.2

v1.0.1

v1.0.0

Code Analysis

Analyzed Mar 17, 2026

Infusionsoft Exit Optin Code Analysis

Dangerous Functions

Raw SQL Queries

0 prepared

Unescaped Output

1 escaped

Nonce Checks

Capability Checks

File Operations

External Requests

Bundled Libraries

Dangerous Functions Found

unserialize$current = unserialize($current);admin_init.php:115

unserialize$webform = unserialize($webform);admin_init.php:255

Output Escaping

8% escaped13 total outputs

Attack Surface

Infusionsoft Exit Optin Attack Surface

Entry Points0

Unprotected0

WordPress Hooks 6

filterplugin_action_linksadmin_init.php:20

actionadmin_initadmin_init.php:83

actionadmin_menuadmin_init.php:197

actionadmin_noticesinfusionsoft-exit-optin.php:20

actionwp_enqueue_scriptsinfusionsoft-exit-optin.php:68

actionwp_footerinfusionsoft-exit-optin.php:142

Maintenance & Trust

Infusionsoft Exit Optin Maintenance & Trust

Maintenance Signals

WordPress version tested4.1.42

Last updatedDec 18, 2014

PHP min version

Downloads2K

Community Trust

Rating20/100

Number of ratings1

Active installs10

Alternatives

Infusionsoft Exit Optin Alternatives

Optinly – Exit Intent, Newsletter Popups, Gamification & Opt-in Forms

optinly

Capture more leads & increase conversions with Optinly. Use 75+ templates and advanced triggering options to create highly converting popup campaigns!

800 3 CVEs

Lead Captor

lead-captor

Attractive popup forms on exit intent to convert visitors into subscribers.

10 No CVEs

Reward Dice by PreciseFunnels – WooCommerce Exit Intent Popup with an Email Optin Form

reward-dice-by-precisefunnels

Reward Dice by PreciseFunnels is an exit intent popup with an email optin form that uses gamification for efficient lead generation in WooCommerce.

0 No CVEs

Poptin – Exit Pop Ups & Email Popups

poptin

100

Free exit intent popup builder, gamified popups with spin the wheel, contact form builder & lead generation pop ups platform for your website. 🎉

20K 1 CVE

Smart Popup by Supsystic

popup-by-supsystic

Create targeted popups for lead capture, event notifications, announcements, and promotions — shown at the right time without disrupting your visitors …

10K 8 CVEs

Developer Profile

Infusionsoft Exit Optin Developer Profile

Jacob Allred

6 plugins · 380 total installs

trust score

Avg Security Score

82/100

Avg Patch Time

30 days

View full developer profile

Detection Fingerprints

How We Detect Infusionsoft Exit Optin

Patterns used to identify this plugin on WordPress sites during automated security audits and web crawling.

Asset Fingerprints

Asset Paths

/wp-content/plugins/infusionsoft-exit-optin/css/magnific-popup.css/wp-content/plugins/infusionsoft-exit-optin/js/magnific-popup.js

Script Paths

/wp-content/plugins/infusionsoft-exit-optin/js/magnific-popup.js

Version Parameters

infusionsoft-exit-optin/css/magnific-popup.css?ver=infusionsoft-exit-optin/js/magnific-popup.js?ver=

HTML / DOM Fingerprints

CSS Classes

mfp-iframemfp-iframe-holder

JS Globals

novaksolutionsExit

FAQ