Does Monage have any unpatched vulnerabilities?

No. All known vulnerabilities in Monage have been patched as of the latest data update. Always keep the plugin updated to the latest version.

Is Monage compatible with WordPress 5.0.25?

According to WordPress.org data, Monage 1.46 has been tested up to WordPress 5.0.25. Check the plugin's changelog for the latest compatibility information.

Is Monage compatible with PHP 5.3+?

Monage requires PHP 5.3 or higher. Most modern WordPress hosts run PHP 8.1 or 8.2. If you are on an older PHP version, consider upgrading before installing this plugin.

How often is Monage updated?

Monage was last updated on Jan 22, 2018. Frequent updates are generally a positive security signal.

What is Monage's security score?

Monage has a WP-Safety security score of 85/100. This score is computed from CVE history, patch response time, developer trust signals, and plugin maintenance activity.

Monage Security & Risk Analysis

wordpress.org/plugins/monage

Let\'s make monage (giving monacoin) to wordpress blog more easier!

10 active installs v1.46 PHP 5.3+ WP 4.7+ Updated Jan 22, 2018

crypto-currencymonamonacoinvirtual-currency%e4%bb%ae%e6%83%b3%e9%80%9a%e8%b2%a8

A · Safe

CVEs total0

Unpatched0

Last CVENever

Download

Safety Verdict

Is Monage Safe to Use in 2026?

Generally Safe

Score 85/100

Monage has no known CVEs and is actively maintained. It's a solid choice for most WordPress installations.

No known CVEs Updated 8yr ago

Risk Assessment

The 'monage' plugin v1.46 exhibits a generally strong security posture based on the static analysis provided. There are no identified dangerous functions, all SQL queries utilize prepared statements, and all identified outputs are properly escaped. The absence of file operations and external HTTP requests further reduces the potential attack surface. However, the presence of unsanitized paths in two taint flows, despite the lack of critical or high severity, warrants attention as it indicates potential pathways for malicious input to reach sensitive operations, even if not currently exploited or leading to severe outcomes.

The plugin has no recorded vulnerability history, including CVEs, which is a significant positive indicator. This lack of past issues, combined with good coding practices observed in the static analysis, suggests a commitment to security by the developers. Nonetheless, the identified taint flows represent a weakness that could be exploited if a vulnerability is introduced in the future or if these paths are leveraged in conjunction with other system weaknesses. The absence of nonce and capability checks on the identified entry points (shortcodes) is also a concern, as it means these shortcodes could be triggered by unauthenticated users, potentially leading to unexpected behavior or information leakage if the shortcode's internal logic is not robustly secured.

Key Concerns

Taint flows with unsanitized paths
No nonce checks on shortcodes
No capability checks on shortcodes

Vulnerabilities

None known

Monage Security Vulnerabilities

No known vulnerabilities — this is a good sign.

Code Analysis

Analyzed Mar 17, 2026

Monage Code Analysis

Dangerous Functions

Raw SQL Queries

0 prepared

Unescaped Output

2 escaped

Nonce Checks

Capability Checks

File Operations

External Requests

Bundled Libraries

Output Escaping

100% escaped2 total outputs

Data Flows

2 unsanitized

Data Flow Analysis

2 flows2 with unsanitized paths

monage_options_page (monage.php:135)

Source (user input) Sink (dangerous op) Sanitizer Transform Unsanitized Sanitized

Attack Surface

Monage Attack Surface

Entry Points6

Unprotected0

Shortcodes 6

[monage_twid] monage.php:109

[monage_imgloc] monage.php:110

[monage_picwi] monage.php:111

[monage_default_mona] monage.php:112

[monage_bf] monage.php:113

[monage_af] monage.php:114

WordPress Hooks 3

actionadmin_menumonage.php:116

actionadmin_noticesmonage.php:171

filterthe_contentmonage.php:257

Maintenance & Trust

Monage Maintenance & Trust

Maintenance Signals

WordPress version tested5.0.25

Last updatedJan 22, 2018

PHP min version5.3

Downloads2K

Community Trust

Rating100/100

Number of ratings1

Active installs10

Alternatives

Monage Alternatives

Crypto-Currency Shortcode

cryptocurrency-shortcode

Defines a shortcode for embeddeding the standard donation button on your WordPress blog.

10 No CVEs

Monarch Sidebar Minimized on Mobile

gg-monarch-sidebar-minimized-on-mobile

The plugin adjusts the behavior of the Monarch plugin (elegantthemes) for cell phones

200 No CVEs

Callback for Monarch by Logic Hop

callback-for-monarch-by-logic-hop

Callback for Monarch by Logic Hop adds a Javascript callback to the Monarch Social Sharing Plugin. Simply install the plugin and a callback is automat …

20 No CVEs

DBlocks CodePro

dblocks-codepro

100

Advanced Custom HTML Block and Code Syntax Highlightering for sharing code snippets and running code.

20 No CVEs

slogan-widget

Dieses Plugin speichert mit Hilfe der Custom Post Types Sprüche in der Datenbank die mit einem Datum, auf Basis von mm.yyyy, versehen sind.

10 No CVEs

Developer Profile

Monage Developer Profile

raspi0124

2 plugins · 10K total installs

trust score

Avg Security Score

93/100

Avg Patch Time

30 days

View full developer profile

Detection Fingerprints

How We Detect Monage

Patterns used to identify this plugin on WordPress sites during automated security audits and web crawling.

Asset Fingerprints

Asset Paths

/wp-content/plugins/monage/monage.png

HTML / DOM Fingerprints

CSS Classes

monage_1

Shortcode Output

[monage_twid][monage_imgloc][monage_picwi][monage_default_mona]

FAQ