Does User Role Sync for MailPoet have any unpatched vulnerabilities?

No published vulnerabilities and no findings under coordinated disclosure as of the latest data update. Always keep the plugin updated to the latest version.

Is User Role Sync for MailPoet compatible with WordPress 4.5.33?

According to WordPress.org data, User Role Sync for MailPoet 1.0 has been tested up to WordPress 4.5.33. Check the plugin's changelog for the latest compatibility information.

How often is User Role Sync for MailPoet updated?

User Role Sync for MailPoet was last updated on Jun 1, 2016. Frequent updates are generally a positive security signal.

What is User Role Sync for MailPoet's security score?

User Role Sync for MailPoet has a WP-Safety security score of 85/100. This score is computed from CVE history, patch response time, developer trust signals, and plugin maintenance activity.

User Role Sync for MailPoet Security & Risk Analysis

wordpress.org/plugins/mp-user-roles-sync

Automatically syncrhonized lists for MailPoet based on user roles.

40 active installs v1.0 PHP + WP 4.4.3+ Updated Jun 1, 2016

email-newsletteremail-subscriptionmailpoetnewsletternewsletters

A · Safe

CVEs total0

Unpatched0

Last CVENever

Plugin page Download

Safety Verdict

Is User Role Sync for MailPoet Safe to Use in 2026?

Generally Safe

Score 85/100

User Role Sync for MailPoet has no known CVEs and is actively maintained. It's a solid choice for most WordPress installations.

No known CVEs Updated 9yr ago

Risk Assessment

The "mp-user-roles-sync" v1.0 plugin exhibits a generally strong security posture based on the provided static analysis. The absence of any identified vulnerabilities in its history is a significant positive indicator. Furthermore, the plugin demonstrates good coding practices by avoiding dangerous functions, file operations, and external HTTP requests. The presence of nonce checks is also commendable, suggesting an awareness of common attack vectors. However, the analysis does reveal some areas for improvement. The percentage of SQL queries using prepared statements, while not critically low, could be higher. Additionally, a notable portion of output escaping is not properly handled, which could lead to cross-site scripting vulnerabilities in certain scenarios. The lack of capability checks, while potentially mitigated by the absence of unprotected entry points, is a weakness that could be exploited if new entry points are introduced without proper authorization checks.

Key Concerns

SQL queries not using prepared statements
Output escaping not properly handled
No capability checks implemented

Vulnerabilities

None known

User Role Sync for MailPoet Security Vulnerabilities

No known vulnerabilities — this is a good sign.

Version History

User Role Sync for MailPoet Release Timeline

v1.0Current

Code Analysis

Analyzed Mar 16, 2026

User Role Sync for MailPoet Code Analysis

Dangerous Functions

Raw SQL Queries

4 prepared

Unescaped Output

11 escaped

Nonce Checks

Capability Checks

File Operations

External Requests

Bundled Libraries

SQL Query Safety

44% prepared9 total queries

Output Escaping

73% escaped15 total outputs

Attack Surface

User Role Sync for MailPoet Attack Surface

Entry Points0

Unprotected0

WordPress Hooks 9

actionadmin_initmp-user-roles-sync-admin.php:7

actionadmin_noticesmp-user-roles-sync-admin.php:26

actionadmin_footermp-user-roles-sync-admin.php:29

actionadmin_noticesmp-user-roles-sync-admin.php:64

actionadmin_noticesmp-user-roles-sync-admin.php:97

actionset_user_rolemp-user-roles-sync.php:15

actionadd_user_rolemp-user-roles-sync.php:16

actionremove_user_rolemp-user-roles-sync.php:17

actionplugins_loadedmp-user-roles-sync.php:81

Maintenance & Trust

User Role Sync for MailPoet Maintenance & Trust

Maintenance Signals

WordPress version tested4.5.33

Last updatedJun 1, 2016

PHP min version

Downloads3K

Community Trust

Rating94/100

Number of ratings3

Active installs40

Alternatives

User Role Sync for MailPoet Alternatives

Ultimate Newsletter

ultimate-newsletter

A Newsletter Plugin for WordPress. Design a template, send emails, people can subscribe through your website, double opt in option, track sent emails.

50 No CVEs

Plugin Name: FeedBlitz Member Mail

feedblitz-membermail

Build your FeedBlitz email newsletter subscription list faster with simple checkboxes on user registration and / or comment forms.

20 No CVEs

Mailster WordPress Newsletter Plugin

mailster

Send beautiful newsletters from WordPress. Collect subscribers with signup forms, automate your emails for WooCommerce, blog post notifications & …

8K 5 CVEs

Drip for WordPress

email-marketing

Do you sell online? If so you need our new Drip for WooCommerce Plugin instead of this one. It includes your entire product catalog, order history int …

2K No CVEs

Email Marketing by SendX

email-marketing-by-sendx

SendX is a lead-generation and marketing automation platform to grow your web business. In simple words it is marketing for non-marketers.

100 No CVEs

Developer Profile

User Role Sync for MailPoet Developer Profile

Marcus (aka @msykes)

13 plugins · 176K total installs

trust score

Avg Security Score

86/100

Avg Patch Time

1423 days

View full developer profile

Detection Fingerprints

How We Detect User Role Sync for MailPoet

Patterns used to identify this plugin on WordPress sites during automated security audits and web crawling.

Asset Fingerprints

HTML / DOM Fingerprints

FAQ