Does Manager for Steam have any unpatched vulnerabilities?

No. All known vulnerabilities in Manager for Steam have been patched as of the latest data update. Always keep the plugin updated to the latest version.

Is Manager for Steam compatible with WordPress 6.9.4?

According to WordPress.org data, Manager for Steam 2.3.1 has been tested up to WordPress 6.9.4. Check the plugin's changelog for the latest compatibility information.

Is Manager for Steam compatible with PHP 7.4+?

Manager for Steam requires PHP 7.4 or higher. Most modern WordPress hosts run PHP 8.1 or 8.2. If you are on an older PHP version, consider upgrading before installing this plugin.

How often is Manager for Steam updated?

Manager for Steam was last updated on Feb 9, 2026. Frequent updates are generally a positive security signal.

What is Manager for Steam's security score?

Manager for Steam has a WP-Safety security score of 100/100. This score is computed from CVE history, patch response time, developer trust signals, and plugin maintenance activity.

Manager for Steam Security & Risk Analysis

wordpress.org/plugins/manager-for-steam

Complete Steam integration with visual customization, Gutenberg blocks, and comprehensive Steam Web API support.

40 active installs v2.3.1 PHP 7.4+ WP 5.0+ Updated Feb 9, 2026

customizergaminglibraryprofilesteam

A · Safe

CVEs total0

Unpatched0

Last CVENever

Plugin page Download

Safety Verdict

Is Manager for Steam Safe to Use in 2026?

Generally Safe

Score 100/100

Manager for Steam has no known CVEs and is actively maintained. It's a solid choice for most WordPress installations.

No known CVEs Updated 1mo ago

Risk Assessment

The 'manager-for-steam' plugin v2.3.1 exhibits a mixed security posture. While there are no recorded vulnerabilities or dangerous functions, indicating a generally well-maintained codebase, significant concerns arise from its attack surface and data handling practices. A substantial portion of the plugin's AJAX handlers (17 out of 25) lack authentication checks, presenting a direct pathway for unauthorized actions if these handlers are exploitable. Furthermore, the taint analysis reveals a high number of flows with unsanitized paths (10 out of 11), which, despite not being classified as critical or high severity in this analysis, is a strong indicator of potential injection vulnerabilities. This, coupled with a moderate SQL query preparedness rate (only 10% using prepared statements), suggests a significant risk of SQL injection vulnerabilities, even if not explicitly flagged as such in the taint analysis. The plugin's extensive external HTTP requests (28) also introduce potential risks related to server-side request forgery (SSRF) or man-in-the-middle attacks if not handled with utmost care, though no specific issues were flagged in this regard. The absence of past vulnerabilities is a positive sign, but the current static analysis findings, particularly the unprotected entry points and the unsanitized paths in the taint analysis, necessitate caution and further investigation. The plugin appears to have a good intention with regard to output escaping, but the identified weaknesses in authentication and data sanitization are critical oversight.

Key Concerns

AJAX handlers without auth checks
High number of unsanitized paths in taint analysis
Low percentage of prepared SQL statements
Many external HTTP requests

Vulnerabilities

None known

Manager for Steam Security Vulnerabilities

No known vulnerabilities — this is a good sign.

Code Analysis

Analyzed Mar 16, 2026

Manager for Steam Code Analysis

Dangerous Functions

Raw SQL Queries

2 prepared

Unescaped Output

216

794 escaped

Nonce Checks

Capability Checks

File Operations

External Requests

Bundled Libraries

SQL Query Safety

10% prepared21 total queries

Output Escaping

79% escaped1010 total outputs

Data Flows

10 unsanitized

Data Flow Analysis

11 flows10 with unsanitized paths

ajax_preview (includes\class-steam-manager-admin.php:576)

Source (user input) Sink (dangerous op) Sanitizer Transform Unsanitized Sanitized

Attack Surface

17 unprotected

Manager for Steam Attack Surface

Entry Points45

Unprotected17

AJAX Handlers 25

authwp_ajax_steammanager_emergencyincludes\ajax-preview-simple.php:30

noprivwp_ajax_steammanager_emergencyincludes\ajax-preview-simple.php:31

noprivwp_ajax_heartbeatincludes\ajax-preview-simple.php:35

authwp_ajax_steammanager_preview_simpleincludes\ajax-preview-simple.php:54

noprivwp_ajax_steammanager_preview_simpleincludes\ajax-preview-simple.php:55

authwp_ajax_steammanager_testincludes\ajax-preview-simple.php:70

noprivwp_ajax_steammanager_testincludes\ajax-preview-simple.php:71

authwp_ajax_steammanager_store_bad_imageincludes\class-steam-manager-frontend.php:45

noprivwp_ajax_steammanager_store_bad_imageincludes\class-steam-manager-frontend.php:46

authwp_ajax_steammanager_clear_bad_imagesincludes\class-steam-manager-frontend.php:47

noprivwp_ajax_steammanager_clear_bad_imagesincludes\class-steam-manager-frontend.php:48

authwp_ajax_steammanager_directmanager-for-steam.php:46

authwp_ajax_steammanager_preview_workingmanager-for-steam.php:258

noprivwp_ajax_steammanager_preview_workingmanager-for-steam.php:259

authwp_ajax_steammanager_search_gamesmanager-for-steam.php:357

authwp_ajax_steammanager_clear_profile_cachemanager-for-steam.php:358

authwp_ajax_steammanager_clear_wishlist_cachemanager-for-steam.php:359

authwp_ajax_steammanager_clear_all_cachemanager-for-steam.php:360

authwp_ajax_steammanager_save_templatemanager-for-steam.php:361

authwp_ajax_steammanager_load_presetsmanager-for-steam.php:362

authwp_ajax_steammanager_delete_presetmanager-for-steam.php:363

authwp_ajax_steammanager_load_pagemanager-for-steam.php:367

noprivwp_ajax_steammanager_load_pagemanager-for-steam.php:368

authwp_ajax_steammanager_store_bad_imagemanager-for-steam.php:371

noprivwp_ajax_steammanager_store_bad_imagemanager-for-steam.php:372

Shortcodes 20

[steammanager_game] includes\class-steam-manager-frontend.php:15

[steammanager_single-game] includes\class-steam-manager-frontend.php:16

[steammanager_add_to_wishlist] includes\class-steam-manager-frontend.php:17

[steammanager_profile] includes\class-steam-manager-frontend.php:18

[steammanager_library] includes\class-steam-manager-frontend.php:19

[steammanager_news] includes\class-steam-manager-frontend.php:20

[steammanager_friends] includes\class-steam-manager-frontend.php:21

[steammanager_achievements] includes\class-steam-manager-frontend.php:22

[steammanager_recently_played] includes\class-steam-manager-frontend.php:23

[steammanager_user_level] includes\class-steam-manager-frontend.php:24

[steammanager_wishlist] includes\class-steam-manager-frontend.php:25

[steammanager_wishlist_sorted] includes\class-steam-manager-frontend.php:26

[steammanager_wishlist_count] includes\class-steam-manager-frontend.php:27

[steammanager_current_players] includes\class-steam-manager-frontend.php:28

[steammanager_enhanced_game] includes\class-steam-manager-frontend.php:29

[steammanager_user_bans] includes\class-steam-manager-frontend.php:32

[steammanager_user_groups] includes\class-steam-manager-frontend.php:33

[steammanager_profile_customization] includes\class-steam-manager-frontend.php:37

[steammanager_enhanced_friends] includes\class-steam-manager-frontend.php:38

[steammanager_enhanced_library] includes\class-steam-manager-frontend.php:39

WordPress Hooks 20

actionadmin_menuincludes\class-steam-manager-admin.php:9

actionadmin_initincludes\class-steam-manager-admin.php:10

actionadmin_enqueue_scriptsincludes\class-steam-manager-admin.php:11

actioninitincludes\class-steam-manager-blocks.php:23

actionenqueue_block_editor_assetsincludes\class-steam-manager-blocks.php:24

actionwp_enqueue_scriptsincludes\class-steam-manager-blocks.php:25

actionadmin_menuincludes\class-steam-manager-customizer.php:32

actionadmin_enqueue_scriptsincludes\class-steam-manager-customizer.php:33

actionwp_enqueue_scriptsincludes\class-steam-manager-frontend.php:36

actionwp_enqueue_scriptsincludes\class-steam-manager-frontend.php:42

actionwp_footerincludes\class-steam-manager-frontend.php:51

actionwp_footerincludes\class-steam-manager-performance.php:23

actionadmin_footerincludes\class-steam-manager-performance.php:24

actionadmin_enqueue_scriptsincludes\class-steam-manager-top-bar.php:21

actionadmin_noticesincludes\class-steam-manager-top-bar.php:22

actionadmin_headincludes\class-steam-manager-top-bar.php:23

actionplugins_loadedmanager-for-steam.php:323

actioninitmanager-for-steam.php:326

actionadmin_noticesmanager-for-steam.php:330

actionplugins_loadedmanager-for-steam.php:563

Scheduled Events 1

steammanager_refresh_wishlist

Maintenance & Trust

Manager for Steam Maintenance & Trust

Maintenance Signals

WordPress version tested6.9.4

Last updatedFeb 9, 2026

PHP min version7.4

Downloads996

Community Trust

Rating100/100

Number of ratings1

Active installs40

Alternatives

Manager for Steam Alternatives

Steam Library GT

steam-library-gt

Display your Steam game library and grab related game information from the thegamesdb.net.

10 No CVEs

Advanced Steam Widget

advanced-steam-widget

Displays Steam gaming statistics in a widget with increased flexibility, stability, and performance

100 No CVEs

WPMyAvatar

wpmyavatar

Add a custom avatar (profile picture) from the Wordpress Media Library as user profile picture instead of gravatar.

20 No CVEs

Default Media Library View

default-media-view

100

Adds a media library default view selection to the user profile page.

10 No CVEs

FenShop (gaming shop for minecraft & steam games)

fenshop

Lien vers FenShop - Boutique gaming sur mesure minecraft & steam Link to FenShop - Gaming shop for minecraft & steam games

10 No CVEs

Developer Profile

Manager for Steam Developer Profile

mariuszkobak

1 plugin · 40 total installs

trust score

Avg Security Score

100/100

Avg Patch Time

30 days

View full developer profile

Detection Fingerprints

How We Detect Manager for Steam

Patterns used to identify this plugin on WordPress sites during automated security audits and web crawling.

Asset Fingerprints

Asset Paths

/wp-content/plugins/manager-for-steam/assets/css/steam-manager-profile.css/wp-content/plugins/manager-for-steam/assets/css/steam-manager-library.css/wp-content/plugins/manager-for-steam/assets/css/steam-manager-single-game.css/wp-content/plugins/manager-for-steam/assets/css/steam-manager-wishlist.css/wp-content/plugins/manager-for-steam/assets/css/steam-manager-customizer.css/wp-content/plugins/manager-for-steam/assets/js/steam-manager-preview.js/wp-content/plugins/manager-for-steam/assets/js/steam-manager-game-search.js/wp-content/plugins/manager-for-steam/assets/js/steam-manager-library-filter.js+2 more

Script Paths

/wp-content/plugins/manager-for-steam/assets/js/steam-manager-preview.js/wp-content/plugins/manager-for-steam/assets/js/steam-manager-game-search.js/wp-content/plugins/manager-for-steam/assets/js/steam-manager-library-filter.js/wp-content/plugins/manager-for-steam/assets/js/steam-manager-wishlist-filter.js/wp-content/plugins/manager-for-steam/assets/js/steam-manager-customizer.js

Version Parameters

manager-for-steam/assets/css/steam-manager-profile.css?ver=manager-for-steam/assets/css/steam-manager-library.css?ver=manager-for-steam/assets/css/steam-manager-single-game.css?ver=manager-for-steam/assets/css/steam-manager-wishlist.css?ver=manager-for-steam/assets/css/steam-manager-customizer.css?ver=manager-for-steam/assets/js/steam-manager-preview.js?ver=manager-for-steam/assets/js/steam-manager-game-search.js?ver=manager-for-steam/assets/js/steam-manager-library-filter.js?ver=manager-for-steam/assets/js/steam-manager-wishlist-filter.js?ver=manager-for-steam/assets/js/steam-manager-customizer.js?ver=

HTML / DOM Fingerprints

CSS Classes

steam-manager-profile-wrappersteam-manager-library-gridsteam-manager-game-cardsteam-manager-wishlist-itemsteam-customizer-noticesteam-manager-game-search-results

HTML Comments

+8 more

Data Attributes

data-steam-manager-componentdata-steam-manager-templatedata-steam-manager-steam-iddata-steam-manager-avatar-sizedata-steam-manager-layoutdata-steam-manager-show-status+36 more

JS Globals

steamManagerPreviewsteamManagerGameSearchsteamManagerLibraryFiltersteamManagerWishlistFiltersteamManagerCustomizer

REST Endpoints

/wp-json/steam-manager/v1/game/wp-json/steam-manager/v1/library/wp-json/steam-manager/v1/wishlist

Shortcode Output

[steammanager_profile][steammanager_library][steammanager_game][steammanager_wishlist]

FAQ

Manager for Steam Security & Risk Analysis

Is Manager for Steam Safe to Use in 2026?

Generally Safe

Key Concerns

Manager for Steam Security Vulnerabilities

Manager for Steam Code Analysis

SQL Query Safety

Output Escaping

Data Flow Analysis

Manager for Steam Attack Surface

AJAX Handlers 25

Shortcodes 20

Scheduled Events 1

Manager for Steam Maintenance & Trust

Maintenance Signals

Community Trust

Manager for Steam Alternatives

Steam Library GT

Advanced Steam Widget

WPMyAvatar

Default Media Library View

FenShop (gaming shop for minecraft & steam games)

Manager for Steam Developer Profile

How We Detect Manager for Steam

Asset Fingerprints

HTML / DOM Fingerprints

Frequently Asked Questions about Manager for Steam