Does Microtango have any unpatched vulnerabilities?

No. All known vulnerabilities in Microtango have been patched as of the latest data update. Always keep the plugin updated to the latest version.

Is Microtango compatible with WordPress 6.9.4?

According to WordPress.org data, Microtango 0.9.31 has been tested up to WordPress 6.9.4. Check the plugin's changelog for the latest compatibility information.

Is Microtango compatible with PHP 7.0.0+?

Microtango requires PHP 7.0.0 or higher. Most modern WordPress hosts run PHP 8.1 or 8.2. If you are on an older PHP version, consider upgrading before installing this plugin.

How often is Microtango updated?

Microtango was last updated on Feb 7, 2026. Frequent updates are generally a positive security signal.

What is Microtango's security score?

Microtango has a WP-Safety security score of 99/100. This score is computed from CVE history, patch response time, developer trust signals, and plugin maintenance activity.

Microtango Security & Risk Analysis

wordpress.org/plugins/microtango

Microtango WordPress integration. This plugin requires a Microtango subscription. It loads data from the Microtango REST API and renders it on your si …

30 active installs v0.9.31 PHP 7.0.0+ WP 4.1.0+ Updated Feb 7, 2026

anmeldungubersichtkursemicrotangotanzschule

A · Safe

CVEs total1

Unpatched0

Last CVEFeb 10, 2026

Plugin page Download

Safety Verdict

Is Microtango Safe to Use in 2026?

Generally Safe

Score 99/100

Microtango has a strong security track record. Known vulnerabilities have been patched promptly.

1 known CVELast CVE: Feb 10, 2026Updated 1mo ago

Risk Assessment

The plugin 'microtango' v0.9.31 exhibits a generally good security posture based on the static analysis. The absence of dangerous functions, external HTTP requests, and file operations, along with 100% of SQL queries using prepared statements, are strong indicators of secure coding practices. Furthermore, all identified entry points (shortcodes) have capability checks, suggesting an effort to prevent unauthorized access.

However, there are some areas of concern. While the number of output points is small, a significant portion (33%) are not properly escaped. This presents a potential risk of Cross-Site Scripting (XSS) vulnerabilities if user-supplied data is rendered directly into the output. The absence of nonce checks on any entry points is also a notable weakness, as nonces are crucial for preventing Cross-Site Request Forgery (CSRF) attacks. The lack of taint analysis results is also a gap in understanding potential data flow risks within the plugin.

The plugin's vulnerability history shows a single medium-severity CVE related to XSS, which has since been patched. While only one known vulnerability is positive, the fact that it was an XSS issue aligns with the unescaped output identified in the static analysis, reinforcing the importance of addressing this. The presence of a past vulnerability, even if patched, indicates that the plugin is not entirely immune to security flaws. In conclusion, 'microtango' v0.9.31 has strengths in its SQL handling and controlled entry points, but weaknesses in output escaping and CSRF protection need to be addressed.

Key Concerns

Unescaped output identified
No nonce checks on entry points
Past medium vulnerability history

Vulnerabilities

Microtango Security Vulnerabilities

CVEs by Year

1 CVE in 2026

2026

Patched Has unpatched

Severity Breakdown

Medium

1 total CVE

CVE-2026-1821medium · 6.4Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting')

Microtango <= 0.9.29 - Authenticated (Contributor+) Stored Cross-Site Scripting via Shortcode Attributes

Feb 10, 2026 Patched in 0.9.30 (2d)

Code Analysis

Analyzed Mar 16, 2026

Microtango Code Analysis

Dangerous Functions

Raw SQL Queries

0 prepared

Unescaped Output

4 escaped

Nonce Checks

Capability Checks

File Operations

External Requests

Bundled Libraries

Output Escaping

67% escaped6 total outputs

Attack Surface

Microtango Attack Surface

Entry Points4

Unprotected0

Shortcodes 4

[mt_courses] microtango-init.php:4

[mt_reservation] microtango-init.php:5

[mt_video] microtango-init.php:6

[mt_form] microtango-init.php:7

WordPress Hooks 3

actionwp_enqueue_scriptsmicrotango-init.php:3

actionadmin_menumicrotango-settings-init.php:6

actionadmin_initmicrotango-settings-init.php:7

Maintenance & Trust

Microtango Maintenance & Trust

Maintenance Signals

WordPress version tested6.9.4

Last updatedFeb 7, 2026

PHP min version7.0.0

Downloads3K

Community Trust

Rating0/100

Number of ratings0

Active installs30

Alternatives

Microtango Alternatives

Webling

webling

Anmeldeformulare und Mitgliederdaten aus der Vereinssoftware webling.eu auf deiner Webseite anzeigen.

500 1 unpatched

E-Newsletter Plugin für PROFFIX

e-newsletter-proffix

Plugin für die einfache Nutzung des PROFFIX E-Newsletter Services in Wordpress.

10 No CVEs

lgv-anmeldesystem

100

The "lgv-anmeldesystem is a registration tool, where people can register itself and optional modify or delete the registration at a later time by …

10 No CVEs

Developer Profile

Microtango Developer Profile

microtango

1 plugin · 30 total installs

trust score

Avg Security Score

99/100

Avg Patch Time

2 days

View full developer profile

Detection Fingerprints

How We Detect Microtango

Patterns used to identify this plugin on WordPress sites during automated security audits and web crawling.

Asset Fingerprints

Asset Paths

/wp-content/plugins/microtango/scripts/mtrest-3.0.0.min.js

Script Paths

plugins/microtango/scripts/mtrest-3.0.0.min.js

Version Parameters

microtango/scripts/mtrest-3.0.0.min.js?ver=

HTML / DOM Fingerprints

Data Attributes

data-mtattendformdata-restkeydata-attendurldata-attendtextdata-coursenotfoundtextdata-pleasewaittext+9 more

JS Globals

MicrotangoCMSHelper

Shortcode Output

<script>MicrotangoCMSHelper.add(

FAQ