WP-Safety

My Newsletter Security & Risk Analysis

wordpress.org/plugins/my-newsletter

Send newsletters to WordPress users and commenters with background queue processing, test email sending, and secure unsubscribe links.

10 active installs v2.0.2 PHP 7.4+ WP 5.8+ Updated Feb 26, 2026
bulk-emailcommentersemailnewsletterusers
100
A · Safe
CVEs total0
Unpatched0
Last CVENever
Plugin page Download
Safety Verdict

Is My Newsletter Safe to Use in 2026?

Generally Safe

Score 100/100

My Newsletter has no known CVEs and is actively maintained. It's a solid choice for most WordPress installations.

No known CVEs Updated 1mo ago
Risk Assessment

The "my-newsletter" v2.0.2 plugin demonstrates a generally good security posture based on the provided static analysis. The absence of shortcodes, cron events, and REST API routes, combined with all three identified AJAX handlers having proper authentication checks, significantly limits the potential attack surface. The plugin also shows a strong commitment to secure coding practices by utilizing prepared statements for the vast majority of its SQL queries and incorporating nonce checks and capability checks for its entry points. The lack of any recorded vulnerabilities in its history further reinforces this positive outlook.

However, there are minor areas for improvement. While the majority of output is properly escaped, a small percentage is not, which could potentially lead to cross-site scripting (XSS) vulnerabilities if user-supplied data is directly outputted without sanitization. The analysis did not uncover any taint flows or dangerous functions, which is excellent. The plugin also does not bundle any libraries, removing the risk of outdated or vulnerable components. Overall, "my-newsletter" v2.0.2 appears to be a relatively secure plugin, with only minor potential for improvement in output escaping.

Key Concerns

  • Unescaped output detected
Vulnerabilities
None known

My Newsletter Security Vulnerabilities

No known vulnerabilities — this is a good sign.
Version History

My Newsletter Release Timeline

v2.0.2Current
v1.0.1
v1.0.0
v0.1.3
v0.1.2
v0.1.1
v0.1.0
v0.0.9
v0.0.8
v0.0.7
Code Analysis
Analyzed Mar 16, 2026

My Newsletter Code Analysis

Dangerous Functions
0
Raw SQL Queries
2
12 prepared
Unescaped Output
23
49 escaped
Nonce Checks
3
Capability Checks
3
File Operations
0
External Requests
0
Bundled Libraries
0

SQL Query Safety

86% prepared14 total queries

Output Escaping

68% escaped72 total outputs
Attack Surface

My Newsletter Attack Surface

Entry Points3
Unprotected0

AJAX Handlers 3

authwp_ajax_wpnl_create_campaignincludes\class-wpnl-admin.php:21
authwp_ajax_wpnl_campaign_progressincludes\class-wpnl-admin.php:22
authwp_ajax_wpnl_send_testincludes\class-wpnl-admin.php:23
WordPress Hooks 9
actionadmin_menuincludes\class-wpnl-admin.php:10
actionadmin_initincludes\class-wpnl-admin.php:11
actioninitincludes\class-wpnl-admin.php:16
actionadmin_enqueue_scriptsincludes\class-wpnl-admin.php:19
actioninitincludes\class-wpnl-plugin.php:20
filtercron_schedulesincludes\class-wpnl-plugin.php:22
filterquery_varsincludes\class-wpnl-unsubscribe.php:11
actioninitincludes\class-wpnl-unsubscribe.php:16
actiontemplate_redirectincludes\class-wpnl-unsubscribe.php:19
Maintenance & Trust

My Newsletter Maintenance & Trust

Maintenance Signals

WordPress version tested6.9.4
Last updatedFeb 26, 2026
PHP min version7.4
Downloads4K

Community Trust

Rating100/100
Number of ratings3
Active installs10
Alternatives

My Newsletter Alternatives

Newsletters

Newsletters

newsletters-lite

B
76

Newsletter plugin for WordPress to capture subscribers and send beautiful, bulk newsletter emails.

2K 26 CVEs
MailBluster for WordPress

MailBluster for WordPress

mailbluster4wp

A
100

A free and simple WordPress plugin for MailBluster which provides different methods to create and include subscription forms into WordPress pages or p …

100 No CVEs
Magic Emails & Autologin URLs

Magic Emails & Autologin URLs

bh-wp-autologin-urls

A
92

Adds magic email link to login screen. Adds single-use passwords to WordPress emails' URLs for frictionless login.

80 No CVEs
Newsletter subscription optin module

Newsletter subscription optin module

newsletter-subscription-widget-for-sendblaster

C
63

Plugin for managing subscriptions to a mailing list. It provides a simple form for subscription to your mailing list through single or double opt-in.

60 1 unpatched
MailRush.io Forms

MailRush.io Forms

mailrush-io-forms

A
85

Add Subscription Forms to WordPress. Send transactional Emails and Automate your email marketing efforts.

10 No CVEs
Developer Profile

My Newsletter Developer Profile

Georgijevic

2 plugins · 10 total installs

94
trust score
Avg Security Score
100/100
Avg Patch Time
30 days
View full developer profile
Detection Fingerprints

How We Detect My Newsletter

Patterns used to identify this plugin on WordPress sites during automated security audits and web crawling.

Asset Fingerprints

Asset Paths
/wp-content/plugins/my-newsletter/assets/admin.css/wp-content/plugins/my-newsletter/assets/admin.js
Script Paths
/wp-content/plugins/my-newsletter/assets/admin.js
Version Parameters
my-newsletter/assets/admin.css?ver=my-newsletter/assets/admin.js?ver=

HTML / DOM Fingerprints

CSS Classes
wpnl-gridwpnl-cardwpnl-compose
Data Attributes
data-nonce
JS Globals
WPNL
REST Endpoints
/wp-json/wpnl/v1/campaigns
FAQ

Frequently Asked Questions about My Newsletter