MailUp Auto Subscription Security & Risk Analysis
wordpress.org/plugins/mailup-auto-subscribtionLet users subscribe to MailUp newsletter service in the same time they're registering to your site.
Is MailUp Auto Subscription Safe to Use in 2026?
Generally Safe
Score 99/100MailUp Auto Subscription has a strong security track record. Known vulnerabilities have been patched promptly.
The mailup-auto-subscribtion plugin, version 1.2.0, exhibits a generally good security posture with no identified critical or high-severity issues during static analysis and taint flows. The absence of dangerous functions, SQL injection vulnerabilities due to prepared statements, and a lack of file operations are positive indicators. Furthermore, the plugin demonstrates good practices by implementing nonce checks and capability checks on some of its entry points. However, the plugin does make external HTTP requests, which can introduce risks if not handled securely, and only half of its output is properly escaped, leaving potential for cross-site scripting (XSS) vulnerabilities.
The vulnerability history shows one previously disclosed medium-severity CVE, which has since been patched. This past vulnerability was a CSRF, indicating a potential pattern of such issues. While there are no currently unpatched vulnerabilities, the past occurrence suggests a need for continued vigilance regarding CSRF prevention. The overall security is decent due to the lack of critical code-level flaws, but the unescaped output and external requests are areas that warrant attention for further hardening.
Key Concerns
- Half of output is not properly escaped
- Makes external HTTP requests
- One past medium vulnerability (CSRF)
MailUp Auto Subscription Security Vulnerabilities
CVEs by Year
Severity Breakdown
1 total CVE
MailUp Auto Subscription <= 1.1.0 - Cross-Site Request Forgery to Stored Cross-Site Scripting
MailUp Auto Subscription Code Analysis
Output Escaping
Data Flow Analysis
MailUp Auto Subscription Attack Surface
WordPress Hooks 5
Maintenance & Trust
MailUp Auto Subscription Maintenance & Trust
Maintenance Signals
Community Trust
MailUp Auto Subscription Alternatives
MailUp for WooCommerce
wc-mailup
Lead marketing and clients follow-up for WooCommerce with MailUp lists, groups and workflows
Hostinger Reach – AI-Powered Email Marketing for WordPress
hostinger-reach
Launch and grow your email marketing effortlessly with Hostinger Reach. Collect contacts, sync subscribers, and send emails – all in one, AI powered.
Newsletter – Send awesome emails from WordPress
newsletter
An email marketing tool for your blog: subscription forms to create your lists with unlimited subscribers and newsletters.
Hustle – Email Marketing, Lead Generation, Optins, Popups
wordpress-popup
Setup email optin forms, popups, newsletter forms & subscription forms to generate email leads with the best marketing popup builder
WP Subscribe
wp-subscribe
WP Subscribe is a simple but powerful subscription plugin which supports MailChimp, Aweber and Feedburner.
MailUp Auto Subscription Developer Profile
13 plugins · 2K total installs
How We Detect MailUp Auto Subscription
Patterns used to identify this plugin on WordPress sites during automated security audits and web crawling.
Asset Fingerprints
/wp-content/plugins/mailup-auto-subscribtion/js/tzCheckbox/jquery.tzCheckbox/jquery.tzCheckbox.css/wp-content/plugins/mailup-auto-subscribtion/js/tzCheckbox/jquery.tzCheckbox/jquery.tzCheckbox.js/wp-content/plugins/mailup-auto-subscribtion/js/tzCheckbox/js/script.jsmailup-auto-subscribtion/js/tzCheckbox/jquery.tzCheckbox/jquery.tzCheckbox.css?ver=mailup-auto-subscribtion/js/tzCheckbox/jquery.tzCheckbox/jquery.tzCheckbox.js?ver=mailup-auto-subscribtion/js/tzCheckbox/js/script.js?ver=HTML / DOM Fingerprints
wrap-leftwrap-rightmas-mailup-registration-noncemas-admin-options-nonce