Does My FastAPP have any unpatched vulnerabilities?

No. All known vulnerabilities in My FastAPP have been patched as of the latest data update. Always keep the plugin updated to the latest version.

Is My FastAPP compatible with WordPress 6.6.5?

According to WordPress.org data, My FastAPP 2.0.6 has been tested up to WordPress 6.6.5. Check the plugin's changelog for the latest compatibility information.

Is My FastAPP compatible with PHP 7.4.33+?

My FastAPP requires PHP 7.4.33 or higher. Most modern WordPress hosts run PHP 8.1 or 8.2. If you are on an older PHP version, consider upgrading before installing this plugin.

How often is My FastAPP updated?

My FastAPP was last updated on Nov 11, 2024. Frequent updates are generally a positive security signal.

What is My FastAPP's security score?

My FastAPP has a WP-Safety security score of 92/100. This score is computed from CVE history, patch response time, developer trust signals, and plugin maintenance activity.

My FastAPP Security & Risk Analysis

wordpress.org/plugins/my-fastapp

Create your native Android/iOS app using a wordpress admin console.

40 active installs v2.0.6 PHP 7.4.33+ WP 4.4.0+ Updated Nov 11, 2024

appapp-creatorcreate-appmobile-appmobile-app-builder

A · Safe

CVEs total0

Unpatched0

Last CVENever

Plugin page Download

Safety Verdict

Is My FastAPP Safe to Use in 2026?

Generally Safe

Score 92/100

My FastAPP has no known CVEs and is actively maintained. It's a solid choice for most WordPress installations.

No known CVEs Updated 1yr ago

Risk Assessment

The "my-fastapp" v2.0.6 plugin exhibits a mixed security posture. On the positive side, it demonstrates good practices by utilizing prepared statements for all SQL queries and having no recorded historical vulnerabilities or outstanding CVEs, which suggests a history of security attention or a lack of past exploitable issues. The plugin also shows an absence of common attack vectors like AJAX handlers, REST API routes, shortcodes, or cron events without proper authentication or permission checks, and no file operations or bundled libraries that could introduce external risks. This significantly limits the external attack surface.

However, several concerning signals are present. The presence of the `unserialize` function, especially without clear sanitation or validation of the data being unserialized, is a significant risk. This can lead to Remote Code Execution (RCE) vulnerabilities if an attacker can control the serialized data. Furthermore, the analysis reveals that 100% of output operations are not properly escaped, presenting a high risk of Cross-Site Scripting (XSS) vulnerabilities. The taint analysis also identified a flow with unsanitized paths, which, while not classified as critical or high severity in this instance, points to potential weaknesses in handling user-supplied data that could be exploited in conjunction with other vulnerabilities.

While the plugin's vulnerability history is clean, the static analysis reveals critical areas for improvement. The lack of nonces on potential entry points (though none were identified, the absence of checks is concerning if new ones are introduced) and the unescaped outputs are direct pathways to common web attacks. The presence of `unserialize` is a ticking time bomb if not handled with extreme care. The plugin's strength lies in its limited attack surface and secure SQL handling, but the identified code signals for output escaping and unserialization, coupled with the taint flow, indicate that the overall security is not robust and requires immediate attention.

Key Concerns

Dangerous function unserialize found
100% of outputs are not properly escaped
Flow with unsanitized paths found
No nonce checks found

Vulnerabilities

None known

My FastAPP Security Vulnerabilities

No known vulnerabilities — this is a good sign.

Code Analysis

Analyzed Mar 16, 2026

My FastAPP Code Analysis

Dangerous Functions

Raw SQL Queries

0 prepared

Unescaped Output

0 escaped

Nonce Checks

Capability Checks

File Operations

External Requests

Bundled Libraries

Dangerous Functions Found

unserialize"apiKey" => unserialize(Storage::get_apitoken()),includes\class-admin.php:90

Output Escaping

0% escaped3 total outputs

Data Flows

1 unsanitized

Data Flow Analysis

2 flows1 with unsanitized paths

intercept_manifest_json (includes\class-controller.php:96)

Source (user input) Sink (dangerous op) Sanitizer Transform Unsanitized Sanitized

Attack Surface

My FastAPP Attack Surface

Entry Points0

Unprotected0

WordPress Hooks 8

actionadmin_menuincludes\class-admin.php:17

actionadmin_enqueue_scriptsincludes\class-assets.php:17

filterrest_authentication_errorsincludes\class-controller.php:154

actionadmin_initmy-fastapp.php:72

actionrest_api_initmy-fastapp.php:73

actionplugins_loadedmy-fastapp.php:74

actioninitmy-fastapp.php:189

actioninitmy-fastapp.php:191

Maintenance & Trust

My FastAPP Maintenance & Trust

Maintenance Signals

WordPress version tested6.6.5

Last updatedNov 11, 2024

PHP min version7.4.33

Downloads8K

Community Trust

Rating100/100

Number of ratings2

Active installs40

Alternatives

My FastAPP Alternatives

WappPress – Convert Site to App Fast – WordPress to Mobile App Builder

wapppress-builds-android-app-for-website

Short Description:Convert your website into Mobile App in just one click – no coding needed. Instantly generate an APK or AAB.

1K 3 CVEs

Mobile App Editor – WordPress to Android App Builder

mobile-app-editor

Native Android App Builder for wordpress and woocommerce.

40 No CVEs

MStore API – Create Native Android & iOS Apps On The Cloud

mstore-api

Take your WordPress store mobile with MStore API! This plugin bridges the gap between your WordPress website and the powerful FluxBuilder app builder.

3K 28 CVEs

AppMySite – WordPress & WooCommerce Mobile App Builder (No-Code Android & iOS App Maker)

appmysite

Turn your WordPress or WooCommerce site into a native Android & iOS app in minutes — no coding required.

8K 1 unpatched

Stionic Core – Create Mobile app for WordPress news

stionic-core

100

Create mobile app for WordPress

100 No CVEs

Developer Profile

My FastAPP Developer Profile

TeamOnAir

1 plugin · 40 total installs

trust score

Avg Security Score

92/100

Avg Patch Time

30 days

View full developer profile

Detection Fingerprints

How We Detect My FastAPP

Patterns used to identify this plugin on WordPress sites during automated security audits and web crawling.

Asset Fingerprints

Asset Paths

/wp-content/plugins/my-fastapp/assets/frontend/build/static/js//wp-content/plugins/my-fastapp/assets/frontend/build/static/css/

Script Paths