Does Landing Page Rockstar – BETA have any unpatched vulnerabilities?

No. All known vulnerabilities in Landing Page Rockstar – BETA have been patched as of the latest data update. Always keep the plugin updated to the latest version.

Is Landing Page Rockstar – BETA compatible with WordPress 4.7.32?

According to WordPress.org data, Landing Page Rockstar – BETA 0.6 has been tested up to WordPress 4.7.32. Check the plugin's changelog for the latest compatibility information.

How often is Landing Page Rockstar – BETA updated?

Landing Page Rockstar – BETA was last updated on Jan 11, 2017. Frequent updates are generally a positive security signal.

What is Landing Page Rockstar – BETA's security score?

Landing Page Rockstar – BETA has a WP-Safety security score of 85/100. This score is computed from CVE history, patch response time, developer trust signals, and plugin maintenance activity.

Landing Page Rockstar – BETA Security & Risk Analysis

wordpress.org/plugins/landing-page-rockstar

Create beautiful, high converting landing pages or squeeze pages in seconds. Plugin includes pre-built templates and opt-in code functionality.

10 active installs v0.6 PHP + WP 4.0+ Updated Jan 11, 2017

generate-leadslanding-pageoptin-formsqueeze-page

A · Safe

CVEs total0

Unpatched0

Last CVENever

Plugin page Download

Safety Verdict

Is Landing Page Rockstar – BETA Safe to Use in 2026?

Generally Safe

Score 85/100

Landing Page Rockstar – BETA has no known CVEs and is actively maintained. It's a solid choice for most WordPress installations.

No known CVEs Updated 9yr ago

Risk Assessment

The "landing-page-rockstar" v0.6 plugin exhibits a concerning security posture due to a significant number of unprotected entry points. The static analysis reveals three AJAX handlers that lack authentication checks, presenting a clear avenue for unauthorized actions. Furthermore, the presence of the `unserialize` function, combined with two taint analysis flows indicating unsanitized paths with high severity, suggests a potential for serious vulnerabilities like remote code execution or data manipulation if malicious data can be fed into these operations. While the plugin demonstrates good practices in using prepared statements for SQL queries and includes nonce and capability checks in some areas, these strengths are overshadowed by the critical weaknesses in access control for its AJAX endpoints. The absence of any recorded vulnerability history is a positive sign, but it does not negate the immediate risks identified in the current codebase. The plugin requires urgent attention to secure its AJAX endpoints and thoroughly sanitize all input that is subject to unserialization.

Key Concerns

Unprotected AJAX handlers
High severity unsanitized taint flows
Unescaped output (low percentage)
Dangerous function 'unserialize'

Vulnerabilities

None known

Landing Page Rockstar – BETA Security Vulnerabilities

No known vulnerabilities — this is a good sign.

Code Analysis

Analyzed Mar 17, 2026

Landing Page Rockstar – BETA Code Analysis

Dangerous Functions

Raw SQL Queries

8 prepared

Unescaped Output

305

19 escaped

Nonce Checks

Capability Checks

File Operations

External Requests

Bundled Libraries

Dangerous Functions Found

unserialize$datetime = unserialize( $meta_value );metabox\helpers\cmb_Meta_Box_types.php:661

unserialize$response = unserialize($raw_response['body']);wp-updates-plugin.php:54

unserialize$res = unserialize($raw_response['body']);wp-updates-plugin.php:78

SQL Query Safety

89% prepared9 total queries

Output Escaping

6% escaped324 total outputs

Data Flows

2 unsanitized

Data Flow Analysis

2 flows2 with unsanitized paths

sanitize_field (metabox\init.php:705)

Source (user input) Sink (dangerous op) Sanitizer Transform Unsanitized Sanitized

Attack Surface

3 unprotected

Landing Page Rockstar – BETA Attack Surface

Entry Points3

Unprotected3

AJAX Handlers 3

authwp_ajax_lprs_parse_formclass\admin.php:77

authwp_ajax_cmb_oembed_handlermetabox\init.php:1111

noprivwp_ajax_cmb_oembed_handlermetabox\init.php:1112

WordPress Hooks 39

actionadmin_enqueue_scriptsclass\admin.php:11

actioninitclass\admin.php:15

actionadmin_menuclass\admin.php:19

actionadmin_initclass\admin.php:23

filterpost_updated_messagesclass\admin.php:27

actioncontextual_helpclass\admin.php:31

actiontemplate_redirectclass\admin.php:35

filteroption_page_capability_ctheme_optionsclass\admin.php:39

actionwp_enqueue_scriptsclass\admin.php:43

actionadmin_headclass\admin.php:47

actiongettextclass\admin.php:51

actionadmin_action_rd_duplicate_post_as_draftclass\admin.php:55

filterpost_row_actionsclass\admin.php:56

actionadmin_noticesclass\admin.php:60

filterget_pagesclass\admin.php:64

filterdefault_contentclass\admin.php:68

actionwpclass\admin.php:72

actionwpclass\admin.php:73

filterthe_contentclass\admin.php:847

filtercmb_meta_boxesincludes\metaboxes.php:12

actioninitincludes\metaboxes.php:398

actionwp_dashboard_setuplprockstar.php:56

filterget_post_metadatametabox\helpers\cmb_Meta_Box_ajax.php:112

filterupdate_post_metadatametabox\helpers\cmb_Meta_Box_ajax.php:114

filtercmb_show_onmetabox\init.php:177

actionadmin_enqueue_scriptsmetabox\init.php:181

actionadmin_menumetabox\init.php:184

actionadd_attachmentmetabox\init.php:185

actionedit_attachmentmetabox\init.php:186

actionsave_postmetabox\init.php:187

actionadmin_enqueue_scriptsmetabox\init.php:188

actionadmin_headmetabox\init.php:191

actionshow_user_profilemetabox\init.php:206

actionedit_user_profilemetabox\init.php:207

actionpersonal_options_updatemetabox\init.php:209

actionedit_user_profile_updatemetabox\init.php:210

actionadmin_headmetabox\init.php:213

filterpre_set_site_transient_update_pluginswp-updates-plugin.php:29

filterplugins_apiwp-updates-plugin.php:30

Maintenance & Trust

Landing Page Rockstar – BETA Maintenance & Trust

Maintenance Signals

WordPress version tested4.7.32

Last updatedJan 11, 2017

PHP min version

Downloads8K

Community Trust

Rating100/100

Number of ratings2

Active installs10

Alternatives

Landing Page Rockstar – BETA Alternatives

Instapage Plugin

instapage

Instapage plugin - the best way for WordPress to seamlessly publish landing pages as a natural extension of your WordPress blog or website.

5K 1 CVE

EngageBay Landing Pages – Responsive landing pages for lead generation and conversions

engagebay-landing-page-builder

100

The simplest way to create beautiful, responsive and high converting landing pages in minutes without writing any code. Improve conversion rates, run …

100 No CVEs

Squeeze Page Toolkit for WordPress

squeeze-page-toolkit

The official Squeeze Page Toolkit plugin that connects your account for hosting your squeeze pages and landing pages on your WordPress website.

20 No CVEs

Elementor Website Builder – More Than Just a Page Builder

elementor

The Elementor Website Builder has it all: drag and drop page builder, pixel perfect design, mobile responsive editing, and more. Get started now!

10.0M 45 CVEs

Website Builder by SeedProd — Theme Builder, Landing Page Builder, Coming Soon Page, Maintenance Mode

coming-soon

Easy Drag & Drop Page Builder. A complete solution to create a WordPress Website, Custom Themes, Landing Pages, Coming Soon & Maintenance Mode Pages.

700K 1 unpatched

Developer Profile

Landing Page Rockstar – BETA Developer Profile

Eric Sloan

1 plugin · 10 total installs

trust score

Avg Security Score

85/100

Avg Patch Time

30 days

View full developer profile

Detection Fingerprints

How We Detect Landing Page Rockstar – BETA

Patterns used to identify this plugin on WordPress sites during automated security audits and web crawling.

Asset Fingerprints

Asset Paths

/wp-content/plugins/landing-page-rockstar/css/styles.css/wp-content/plugins/landing-page-rockstar/js/admin.js

Script Paths

/wp-content/plugins/landing-page-rockstar/js/admin.js

Version Parameters

landing-page-rockstar/css/styles.css?ver=landing-page-rockstar/js/admin.js?ver=

HTML / DOM Fingerprints

CSS Classes

lprs-wrap

HTML Comments

<!-- Special thanks to: Wordpress.org The fine folks who wrote the meta box script: Andrew Norcross (@norcross / andrewnorcross.com)+10 more

Data Attributes

data-lprs-id

JS Globals

lprs_admin_ajax_object

REST Endpoints

/wp-json/lprs/v1/parse-form

Shortcode Output

[landingpage][/landingpage]

FAQ