Does MailChimp Campaign Archive have any unpatched vulnerabilities?

No. All known vulnerabilities in MailChimp Campaign Archive have been patched as of the latest data update. Always keep the plugin updated to the latest version.

Is MailChimp Campaign Archive compatible with WordPress 3.5.2?

According to WordPress.org data, MailChimp Campaign Archive 1.0.3 has been tested up to WordPress 3.5.2. Check the plugin's changelog for the latest compatibility information.

How often is MailChimp Campaign Archive updated?

MailChimp Campaign Archive was last updated on Dec 15, 2012. Frequent updates are generally a positive security signal.

What is MailChimp Campaign Archive's security score?

MailChimp Campaign Archive has a WP-Safety security score of 85/100. This score is computed from CVE history, patch response time, developer trust signals, and plugin maintenance activity.

MailChimp Campaign Archive Security & Risk Analysis

wordpress.org/plugins/mailchimp-campaign-archive

Adds a [mailchimp_campaigns] shortcode that lists your latest MailChimp email campaigns

200 active installs v1.0.3 PHP + WP 2.0.2+ Updated Dec 15, 2012

emailemail-marketingmailchimpmarketingshortcode

A · Safe

CVEs total0

Unpatched0

Last CVENever

Plugin page Download

Safety Verdict

Is MailChimp Campaign Archive Safe to Use in 2026?

Generally Safe

Score 85/100

MailChimp Campaign Archive has no known CVEs and is actively maintained. It's a solid choice for most WordPress installations.

No known CVEs Updated 13yr ago

Risk Assessment

The mailchimp-campaign-archive v1.0.3 plugin exhibits a mixed security posture. On the positive side, it has no known CVEs and its SQL queries are all secured with prepared statements. The attack surface is also minimal, with only one shortcode and no AJAX handlers, REST API routes, or cron events identified. However, there are significant concerns. The presence of two instances of the `unserialize` function is a major red flag, as it can lead to Remote Code Execution if user-supplied data is unserialized without proper validation. Furthermore, an extremely low percentage (1%) of output is properly escaped, indicating a high risk of Cross-Site Scripting (XSS) vulnerabilities. The absence of nonce checks and capability checks for the identified entry points, despite the limited attack surface, also contributes to potential security weaknesses. The lack of vulnerability history might suggest a lack of scrutiny or a relatively new plugin, but it does not negate the identified code-level risks.

Key Concerns

Use of unserialize function
Very low output escaping percentage
Missing nonce checks
Missing capability checks

Vulnerabilities

None known

MailChimp Campaign Archive Security Vulnerabilities

No known vulnerabilities — this is a good sign.

Code Analysis

Analyzed Mar 16, 2026

MailChimp Campaign Archive Code Analysis

Dangerous Functions

Raw SQL Queries

0 prepared

Unescaped Output

144

1 escaped

Nonce Checks

Capability Checks

File Operations

External Requests

Bundled Libraries

Dangerous Functions Found

unserialize$serial = unserialize($response);mailchimp-api-mini-class\examples\inc\MCAPI.class.php:143

unserialize$serial = unserialize($response);mailchimp-api-mini-class\MCAPI.class.php:143

Output Escaping

1% escaped145 total outputs

Attack Surface

MailChimp Campaign Archive Attack Surface

Entry Points1

Unprotected0

Shortcodes 1

[mailchimp_campaigns] main.php:133

Maintenance & Trust

MailChimp Campaign Archive Maintenance & Trust

Maintenance Signals

WordPress version tested3.5.2

Last updatedDec 15, 2012

PHP min version

Downloads7K

Community Trust

Rating82/100

Number of ratings8

Active installs200

Alternatives

MailChimp Campaign Archive Alternatives

Quform Mailchimp

quform-mailchimp

100

Easily add contacts to Mailchimp from Quform forms.

900 No CVEs

Ultimate Popup Free

ultimate-popup-free

Ultimate PopUp Free is an AWESOME PopUp plugin for your wordpress website.

100 No CVEs

McPopup – Popup Form for Mailchimp

mcpopup-popup-form-for-mailchimp

The easiest way to display Mailchimp Popup form on a WordPress site. Responsive Popup form, increase your subscribers on Mailchimp, and many features.

40 No CVEs

Email Marketing Services Integration

email-marketing-services-integration

Easy Wordpress integration with email marketing services.

20 No CVEs

Centous Integration For Contact Form 7 And Mailchimp

centous-integration-for-contact-form-7-and-mailchimp

100

Seamlessly integrate Mailchimp with Contact Form 7 to add subscribers directly from WordPress.

0 No CVEs

Developer Profile

MailChimp Campaign Archive Developer Profile

5 plugins · 310 total installs

trust score

Avg Security Score

91/100

Avg Patch Time

30 days

View full developer profile

Detection Fingerprints

How We Detect MailChimp Campaign Archive

Patterns used to identify this plugin on WordPress sites during automated security audits and web crawling.

Asset Fingerprints

HTML / DOM Fingerprints

CSS Classes

mailchimp-campaigns

HTML Comments

Unable to retrieve list of campaigns
	Code=

Msg=

Shortcode Output

<ul class="mailchimp-campaigns"<a rel="external" target="_blank" href="

FAQ