Does NutsForPress Maintenance Mode have any unpatched vulnerabilities?

No. All known vulnerabilities in NutsForPress Maintenance Mode have been patched as of the latest data update. Always keep the plugin updated to the latest version.

Is NutsForPress Maintenance Mode compatible with WordPress 6.9.4?

According to WordPress.org data, NutsForPress Maintenance Mode 1.8 has been tested up to WordPress 6.9.4. Check the plugin's changelog for the latest compatibility information.

Is NutsForPress Maintenance Mode compatible with PHP 7.0.0+?

NutsForPress Maintenance Mode requires PHP 7.0.0 or higher. Most modern WordPress hosts run PHP 8.1 or 8.2. If you are on an older PHP version, consider upgrading before installing this plugin.

How often is NutsForPress Maintenance Mode updated?

NutsForPress Maintenance Mode was last updated on Dec 6, 2025. Frequent updates are generally a positive security signal.

What is NutsForPress Maintenance Mode's security score?

NutsForPress Maintenance Mode has a WP-Safety security score of 100/100. This score is computed from CVE history, patch response time, developer trust signals, and plugin maintenance activity.

NutsForPress Maintenance Mode Security & Risk Analysis

wordpress.org/plugins/nutsforpress-maintenance-mode

With NutsForPress Maintenance Mode you can redirect not logged users to a defined page or hide website content at defined breakpoints.

60 active installs v1.8 PHP 7.0.0+ WP 5.3+ Updated Dec 6, 2025

breakpointhide-resolutionmaintenance-modenutsforpress

A · Safe

CVEs total0

Unpatched0

Last CVENever

Plugin page Download

Safety Verdict

Is NutsForPress Maintenance Mode Safe to Use in 2026?

Generally Safe

Score 100/100

NutsForPress Maintenance Mode has no known CVEs and is actively maintained. It's a solid choice for most WordPress installations.

No known CVEs Updated 3mo ago

Risk Assessment

The "nutsforpress-maintenance-mode" plugin, in version 1.8, demonstrates a generally good security posture due to the absence of known vulnerabilities and the proper handling of most code signals. Specifically, the plugin avoids dangerous functions, uses prepared statements for all SQL queries, and exhibits a high percentage of properly escaped output. The lack of file operations and external HTTP requests further reduces its attack surface. The presence of nonce and capability checks suggests an awareness of security best practices for WordPress plugins.

However, a significant concern arises from the presence of a single AJAX handler that lacks authentication checks. This represents a direct entry point into the plugin's functionality that could be exploited by unauthenticated users. While no critical or high severity taint flows were detected, and the vulnerability history is clean, this single unprotected entry point poses a notable risk. The absence of known vulnerabilities is a positive indicator, suggesting that the plugin developers are likely attentive to security, but the unprotected AJAX handler remains a weakness that should be addressed to achieve a more robust security profile.

Key Concerns

AJAX handler without authentication

Vulnerabilities

None known

NutsForPress Maintenance Mode Security Vulnerabilities

No known vulnerabilities — this is a good sign.

Code Analysis

Analyzed Mar 16, 2026

NutsForPress Maintenance Mode Code Analysis

Dangerous Functions

Raw SQL Queries

0 prepared

Unescaped Output

151 escaped

Nonce Checks

Capability Checks

File Operations

External Requests

Bundled Libraries

Output Escaping

96% escaped157 total outputs

Data Flows

All sanitized

Data Flow Analysis

4 flows

nfpmnm_redirect (public\includes\nfpmnm-redirect.php:8)

Source (user input) Sink (dangerous op) Sanitizer Transform Unsanitized Sanitized

Attack Surface

1 unprotected

NutsForPress Maintenance Mode Attack Surface

Entry Points1

Unprotected1

AJAX Handlers 1

authwp_ajax_nfproot_save_settingsnuts-for-press-maintenance-mode.php:35

WordPress Hooks 20

actionadmin_menunuts-for-press-maintenance-mode.php:31

actionplugins_loadednuts-for-press-maintenance-mode.php:39

actionadmin_enqueue_scriptsnuts-for-press-maintenance-mode.php:43

actionadmin_menunuts-for-press-maintenance-mode.php:68

actiontemplate_redirectnuts-for-press-maintenance-mode.php:75

actiontemplate_redirectnuts-for-press-maintenance-mode.php:79

filterrest_authentication_errorsnuts-for-press-maintenance-mode.php:83

actionwp_enqueue_scriptsnuts-for-press-maintenance-mode.php:93

actionwp_headnuts-for-press-maintenance-mode.php:97

actionadmin_bar_menunuts-for-press-maintenance-mode.php:103

actionshow_user_profilenuts-for-press-maintenance-mode.php:107

actionedit_user_profilenuts-for-press-maintenance-mode.php:108

actionuser_new_formnuts-for-press-maintenance-mode.php:109

actionpersonal_options_updatenuts-for-press-maintenance-mode.php:113

actionedit_user_profile_updatenuts-for-press-maintenance-mode.php:114

actionuser_registernuts-for-press-maintenance-mode.php:115

filterwp_authenticate_usernuts-for-press-maintenance-mode.php:119

actioninitnuts-for-press-maintenance-mode.php:123

actionadmin_initnuts-for-press-maintenance-mode.php:124

filterwp_sitemaps_enabledpublic\includes\nfpmnm-redirect-sitemap.php:53

Maintenance & Trust

NutsForPress Maintenance Mode Maintenance & Trust

Maintenance Signals

WordPress version tested6.9.4

Last updatedDec 6, 2025

PHP min version7.0.0

Downloads2K

Community Trust

Rating0/100

Number of ratings0

Active installs60

Alternatives

NutsForPress Maintenance Mode Alternatives

Maintenance

maintenance

100

Great looking maintenance, coming soon & under construction pages. Put your site under maintenance in minutes.

1.0M 1 CVE

Website Builder by SeedProd — Theme Builder, Landing Page Builder, Coming Soon Page, Maintenance Mode

coming-soon

Easy Drag & Drop Page Builder. A complete solution to create a WordPress Website, Custom Themes, Landing Pages, Coming Soon & Maintenance Mode Pages.

700K 8 CVEs

LightStart – Maintenance Mode, Coming Soon and Landing Page Builder

wp-maintenance-mode

Easy Drag & Drop Page Builder that adds a splash page to your site that it's perfect for a coming soon page, maintenance or landing page.

500K 6 CVEs

Password Protected — Lock Entire Site, Pages, Posts, Categories, and Partial Content

password-protected

Protect your WordPress site, pages, posts, WooCommerce products, and categories with single or multiple passwords.

300K 5 CVEs

CMP – Coming Soon & Maintenance Plugin by NiteoThemes

cmp-coming-soon-maintenance

Beautiful Coming soon, Maintenance or Landing page on your website, packed with premium features for free.

200K 6 CVEs

Developer Profile

NutsForPress Maintenance Mode Developer Profile

Christian Gatti

9 plugins · 460 total installs

trust score

Avg Security Score

100/100

Avg Patch Time

30 days

View full developer profile

Detection Fingerprints

How We Detect NutsForPress Maintenance Mode

Patterns used to identify this plugin on WordPress sites during automated security audits and web crawling.

Asset Fingerprints

Asset Paths

/wp-content/plugins/nutsforpress-maintenance-mode/public/js/nfpmnm-script.js/wp-content/plugins/nutsforpress-maintenance-mode/root/css/nfproot-style.css/wp-content/plugins/nutsforpress-maintenance-mode/root/js/nfproot-script.js/wp-content/plugins/nutsforpress-maintenance-mode/root/js/nfproot-save-settings.js

Script Paths

/wp-content/plugins/nutsforpress-maintenance-mode/public/js/nfpmnm-script.js

HTML / DOM Fingerprints

CSS Classes

nfpmnm-maintenance-noticenfpmnm-screen-check-notice

HTML Comments

if this file is called directly, die.if this file is called directly, abort.

Data Attributes

id="nfpmnm_maintenance_mode"id="nfpmnm_screen_check"

JS Globals

nfproot_save_settings_object

FAQ