Does LaunchWP have any unpatched vulnerabilities?

No. All known vulnerabilities in LaunchWP have been patched as of the latest data update. Always keep the plugin updated to the latest version.

Is LaunchWP compatible with WordPress 6.8.5?

According to WordPress.org data, LaunchWP 1.1 has been tested up to WordPress 6.8.5. Check the plugin's changelog for the latest compatibility information.

Is LaunchWP compatible with PHP 7.1+?

LaunchWP requires PHP 7.1 or higher. Most modern WordPress hosts run PHP 8.1 or 8.2. If you are on an older PHP version, consider upgrading before installing this plugin.

How often is LaunchWP updated?

LaunchWP was last updated on May 19, 2025. Frequent updates are generally a positive security signal.

What is LaunchWP's security score?

LaunchWP has a WP-Safety security score of 100/100. This score is computed from CVE history, patch response time, developer trust signals, and plugin maintenance activity.

LaunchWP Security & Risk Analysis

wordpress.org/plugins/launchwp

LaunchWP is a WordPress-focused modern server management dashboard to help you install and launch WordPress on any VPS or cloud provider.

10 active installs v1.1 PHP 7.1+ WP 4.7+ Updated May 19, 2025

cachecachingperformance

A · Safe

CVEs total0

Unpatched0

Last CVENever

Plugin page Download

Safety Verdict

Is LaunchWP Safe to Use in 2026?

Generally Safe

Score 100/100

LaunchWP has no known CVEs and is actively maintained. It's a solid choice for most WordPress installations.

No known CVEs Updated 10mo ago

Risk Assessment

The "launchwp" plugin v1.1 demonstrates a strong security posture based on the provided static analysis. The absence of any identified AJAX handlers, REST API routes, shortcodes, or cron events with unprotected entry points is a significant positive. Furthermore, the code adheres to excellent secure coding practices, including the use of prepared statements for all SQL queries, proper output escaping for all identified outputs, and the presence of nonce and capability checks. The lack of identified dangerous functions, file operations (only one found), external HTTP requests, and the absence of bundled libraries further contribute to its secure design.

The taint analysis revealed no identified flows, which, combined with the lack of known vulnerabilities (CVEs), suggests a clean codebase with no exploitable security flaws found during this analysis. The history of zero vulnerabilities is a very strong indicator of ongoing developer diligence and a focus on security. While the attack surface is minimal and appears to be well-protected, the presence of a single file operation warrants attention. However, without further context on what this file operation entails, it's difficult to assign a definitive risk.

In conclusion, "launchwp" v1.1 presents a remarkably secure profile. The developers have implemented robust security measures, and there is no historical evidence of vulnerabilities. The minimal attack surface and strict adherence to secure coding practices are commendable. The only minor point for potential improvement would be to ensure the single file operation is appropriately secured and its purpose is clearly understood from a security perspective.

Key Concerns

File operations detected

Vulnerabilities

None known

LaunchWP Security Vulnerabilities

No known vulnerabilities — this is a good sign.

Code Analysis

Analyzed Mar 17, 2026

LaunchWP Code Analysis

Dangerous Functions

Raw SQL Queries

0 prepared

Unescaped Output

13 escaped

Nonce Checks

Capability Checks

File Operations

External Requests

Bundled Libraries

Output Escaping

100% escaped13 total outputs

Attack Surface

LaunchWP Attack Surface

Entry Points0

Unprotected0

WordPress Hooks 9

actionadmin_bar_menuinc\class.php:23

actionadmin_initinc\class.php:24

actionadmin_noticesinc\class.php:27

actionadmin_bar_menuinc\class.php:31

actionadmin_headinc\class.php:33

actionget_user_option_admin_colorinc\class.php:34

actionsave_postinc\class.php:35

actionplugins_loadedlaunchwp.php:41

actionadmin_noticesmu-plugins\launchwp-mu.php:31

Maintenance & Trust

LaunchWP Maintenance & Trust

Maintenance Signals

WordPress version tested6.8.5

Last updatedMay 19, 2025

PHP min version7.1

Downloads555

Community Trust

Rating0/100

Number of ratings0

Active installs10

Alternatives

LaunchWP Alternatives

WP-Optimize – Cache, Compress images, Minify & Clean database to boost page speed & performance

wp-optimize

Get caching and more with this powerful cache plugin. Cache, optimize images, clean your database and minify for maximum performance.

1.0M 3 CVEs

WP Super Cache

wp-super-cache

A very fast caching engine for WordPress that produces static html files.

1.0M 12 CVEs

Breeze Cache

breeze

Breeze is a caching plugin developed by Cloudways. Breeze uses advance caching systems to improve site loading times exponentially.

400K 8 CVEs

Redis Object Cache

redis-cache

100

A persistent object cache backend powered by Redis®¹. Supports Predis, PhpRedis, Relay, replication, sentinels, clustering and WP-CLI.

300K No CVEs

Cache Enabler

cache-enabler

100

A lightweight caching plugin for WordPress that makes your website faster by generating static HTML files.

100K No CVEs

Developer Profile

LaunchWP Developer Profile

Rajin Sharwar

7 plugins · 340 total installs

trust score

Avg Security Score

89/100

Avg Patch Time

30 days

View full developer profile

Detection Fingerprints

How We Detect LaunchWP

Patterns used to identify this plugin on WordPress sites during automated security audits and web crawling.

Asset Fingerprints

Asset Paths

/wp-content/plugins/launchwp/assets/css/admin.css/wp-content/plugins/launchwp/assets/js/admin.js

Script Paths

/wp-content/plugins/launchwp/assets/js/admin.js

HTML / DOM Fingerprints

CSS Classes

launchwp-envlaunchwp-env-staginglaunchwp-env-livelaunchwp-environment-indicator

Data Attributes

data-env-typedata-env-label

JS Globals

launchwp_admin_options

FAQ