Does Easy Project have any unpatched vulnerabilities?

No. All known vulnerabilities in Easy Project have been patched as of the latest data update. Always keep the plugin updated to the latest version.

Is Easy Project compatible with WordPress 3.5.2?

According to WordPress.org data, Easy Project 1.2.10.4 has been tested up to WordPress 3.5.2. Check the plugin's changelog for the latest compatibility information.

How often is Easy Project updated?

Easy Project was last updated on Jun 17, 2013. Frequent updates are generally a positive security signal.

What is Easy Project's security score?

Easy Project has a WP-Safety security score of 85/100. This score is computed from CVE history, patch response time, developer trust signals, and plugin maintenance activity.

Easy Project Security & Risk Analysis

wordpress.org/plugins/iprojectweb

Easy to use yet powerful project management tool

10 active installs v1.2.10.4 PHP + WP 3.3+ Updated Jun 17, 2013

projectproject-managementprojectstask-managementtasks

A · Safe

CVEs total0

Unpatched0

Last CVENever

Plugin page Download

Safety Verdict

Is Easy Project Safe to Use in 2026?

Generally Safe

Score 85/100

Easy Project has no known CVEs and is actively maintained. It's a solid choice for most WordPress installations.

No known CVEs Updated 12yr ago

Risk Assessment

The "iprojectweb" plugin, version 1.2.10.4, exhibits a mixed security posture. While it has no recorded historical vulnerabilities, its static analysis reveals several concerning areas. The plugin exposes two AJAX handlers without authentication checks, presenting a significant risk of unauthorized access and potential manipulation of plugin functionality. Furthermore, the heavy reliance on raw SQL queries (only 15% prepared) and a very low percentage of properly escaped output (5%) indicate a high likelihood of SQL injection and Cross-Site Scripting (XSS) vulnerabilities. The use of the `create_function` function is a direct code quality concern that can lead to security issues. Although taint analysis did not reveal critical or high severity issues, the presence of unsanitized paths is a red flag that warrants further investigation. Overall, despite the absence of known CVEs, the static analysis highlights substantial inherent risks that need to be addressed.

Key Concerns

AJAX handlers without authentication
Low percentage of prepared SQL statements
Low percentage of properly escaped output
Use of dangerous function: create_function
Unsanitized paths found in taint analysis
No nonce checks on entry points

Vulnerabilities

None known

Easy Project Security Vulnerabilities

No known vulnerabilities — this is a good sign.

Code Analysis

Analyzed Mar 17, 2026

Easy Project Code Analysis

Dangerous Functions

Raw SQL Queries

9 prepared

Unescaped Output

2238

120 escaped

Nonce Checks

Capability Checks

File Operations

External Requests

Bundled Libraries

Dangerous Functions Found

create_functionadd_filter('wp_mail_content_type', create_function('', 'return "text/html"; '));iprojectweb_backoffice.php:456

create_functionadd_filter('wp_mail_content_type', create_function('', 'return "text/plain"; '));iprojectweb_backoffice.php:459

Bundled Libraries

TinyMCE

SQL Query Safety

15% prepared61 total queries

Output Escaping

5% escaped2358 total outputs

Data Flows

3 unsanitized

Data Flow Analysis

5 flows3 with unsanitized paths

iprojectweb_entrypoint (iprojectweb.php:80)

Source (user input) Sink (dangerous op) Sanitizer Transform Unsanitized Sanitized

Attack Surface

2 unprotected

Easy Project Attack Surface

Entry Points3

Unprotected2

AJAX Handlers 2

noprivwp_ajax_iprojectweb-submitiprojectweb.php:38

authwp_ajax_iprojectweb-submitiprojectweb.php:39

Shortcodes 1

[iprojectweb_frontend] iprojectweb.php:40

WordPress Hooks 4

actionadmin_menuiprojectweb.php:37

actionplugins_loadediprojectweb.php:41

filterwp_mail_content_typeiprojectweb_backoffice.php:456

filterwp_mail_content_typeiprojectweb_backoffice.php:459

Maintenance & Trust

Easy Project Maintenance & Trust

Maintenance Signals

WordPress version tested3.5.2

Last updatedJun 17, 2013

PHP min version

Downloads14K

Community Trust

Rating46/100

Number of ratings3

Active installs10

Alternatives

Easy Project Alternatives

Project Manager – AI Powered Project Management, Task Management, Kanban Board & Time Tracker

wedevs-project-manager

Ease Project Management and Task Management using a powerful project manager with Kanban board, Gantt chart, milestone tracking & project reporting.

7K 1 unpatched

FluentBoards – Project Management, Task Management, Goal Tracking, Kanban Board, and, Team Collaboration

fluent-boards

The Simplest Project & Task Management Plugin Specifically Crafted for Agencies, Freelancers & Founders.

6K 2 CVEs

Zephyr Project Manager

zephyr-project-manager

Zephyr Project Manager is a modern, easy to use sophisticated project manager for WordPress.

1K 20 CVEs

Taskbuilder – Project Management & Task Management Tool With Kanban Board

taskbuilder

Taskbuilder is a project management and task management plugin for WordPress with Kanban-style boards to organize and track work.

800 11 CVEs

GS Behance Portfolio – Display Projects, Gallery & Slider

gs-behance-portfolio

100

Showcase Behance projects on your site with GS Behance Portfolio. Display in Grid, Slider, Gallery & more responsive layouts.

400 No CVEs

Developer Profile

Easy Project Developer Profile

wppal

1 plugin · 10 total installs

trust score

Avg Security Score

85/100

Avg Patch Time

30 days

View full developer profile

Detection Fingerprints

How We Detect Easy Project

Patterns used to identify this plugin on WordPress sites during automated security audits and web crawling.

Asset Fingerprints

Asset Paths

/wp-content/plugins/iprojectweb/js/json.js/wp-content/plugins/iprojectweb/iprojectwebhtml.1.2.10.4.js/wp-content/plugins/iprojectweb/js/as.js/wp-content/plugins/iprojectweb/js/ajaxupload.js/wp-content/plugins/iprojectweb/js/calendar/calendar_stripped.js/wp-content/plugins/iprojectweb/js/calendar/calendar-setup_stripped.js/wp-content/plugins/iprojectweb/js/calendar/lang/calendar-en.js/wp-content/plugins/iprojectweb/js/base64.js+2 more

Script Paths

Version Parameters

iprojectwebhtml.1.2.10.4.js

HTML / DOM Fingerprints

JS Globals

iprojectweb_requestiProjectWebiprojectwebiprojectweb_entrypointiprojectweb_main_pageiprojectweb_get_support_page+8 more

Shortcode Output

[iprojectweb_frontend]

FAQ

Easy Project Security & Risk Analysis

Is Easy Project Safe to Use in 2026?

Generally Safe

Key Concerns

Easy Project Security Vulnerabilities

Easy Project Code Analysis

Dangerous Functions Found

Bundled Libraries

SQL Query Safety

Output Escaping

Data Flow Analysis

Easy Project Attack Surface

AJAX Handlers 2

Shortcodes 1

Easy Project Maintenance & Trust

Maintenance Signals

Community Trust

Easy Project Alternatives

Project Manager – AI Powered Project Management, Task Management, Kanban Board & Time Tracker

FluentBoards – Project Management, Task Management, Goal Tracking, Kanban Board, and, Team Collaboration

Zephyr Project Manager

Taskbuilder – Project Management & Task Management Tool With Kanban Board

GS Behance Portfolio – Display Projects, Gallery & Slider

Easy Project Developer Profile

How We Detect Easy Project

Asset Fingerprints

HTML / DOM Fingerprints

Frequently Asked Questions about Easy Project