Does Online Succes have any unpatched vulnerabilities?

No published vulnerabilities and no findings under coordinated disclosure as of the latest data update. Always keep the plugin updated to the latest version.

Is Online Succes compatible with WordPress 6.2.9?

According to WordPress.org data, Online Succes 2.3 has been tested up to WordPress 6.2.9. Check the plugin's changelog for the latest compatibility information.

Is Online Succes compatible with PHP 5.6+?

Online Succes requires PHP 5.6 or higher. Most modern WordPress hosts run PHP 8.1 or 8.2. If you are on an older PHP version, consider upgrading before installing this plugin.

How often is Online Succes updated?

Online Succes was last updated on May 9, 2023. Frequent updates are generally a positive security signal.

What is Online Succes's security score?

Online Succes has a WP-Safety security score of 85/100. This score is computed from CVE history, patch response time, developer trust signals, and plugin maintenance activity.

Online Succes Security & Risk Analysis

wordpress.org/plugins/online-succes

With this plugin you can easily add the Online Succes tracking code to your WordPress site.

90 active installs v2.3 PHP 5.6+ WP 3.0.1+ Updated May 9, 2023

b2b-lead-genb2b-lead-generation-softwareip-trackingleadgeneratiewebsite-leads

A · Safe

CVEs total0

Unpatched0

Last CVENever

Plugin page Download

Safety Verdict

Is Online Succes Safe to Use in 2026?

Generally Safe

Score 85/100

Online Succes has no known CVEs and is actively maintained. It's a solid choice for most WordPress installations.

No known CVEs Updated 3yr ago

Risk Assessment

The static analysis of the "online-succes" v2.3 plugin reveals a generally strong security posture in several key areas. The absence of AJAX handlers, REST API routes, shortcodes, and cron events significantly limits the plugin's external attack surface. Furthermore, the plugin does not appear to engage in file operations or external HTTP requests, which are common vectors for vulnerabilities. The use of prepared statements for all SQL queries is also a positive indicator, preventing common SQL injection flaws.

However, a critical concern arises from the complete lack of output escaping. With 16 total outputs identified and 0% properly escaped, this presents a significant Cross-Site Scripting (XSS) risk. Any data displayed to users that originates from or is processed by the plugin could be vulnerable to injection. The lack of nonce checks and capability checks on the identified entry points (though there are none in this specific analysis) is also a general concern that, if entry points were present, would expose the plugin to vulnerabilities like Cross-Site Request Forgery (CSRF) and privilege escalation.

The vulnerability history is clean, with no recorded CVEs. This suggests that the plugin has historically been well-maintained or has not been a target for significant exploitation. However, the lack of history should not be interpreted as a guarantee of future security, especially in light of the identified output escaping deficiency. The overall security is a mixed bag; while the plugin avoids many common pitfalls, the unescaped output is a severe and direct risk.

Key Concerns

All outputs are unescaped
No nonce checks
No capability checks

Vulnerabilities

None known

Online Succes Security Vulnerabilities

No known vulnerabilities — this is a good sign.

Version History

Online Succes Release Timeline

v2.3Current

v2.2

v2.1

Code Analysis

Analyzed Mar 16, 2026

Online Succes Code Analysis

Dangerous Functions

Raw SQL Queries

0 prepared

Unescaped Output

0 escaped

Nonce Checks

Capability Checks

File Operations

External Requests

Bundled Libraries

Output Escaping

0% escaped16 total outputs

Attack Surface

Online Succes Attack Surface

Entry Points0

Unprotected0

WordPress Hooks 6

filterplugin_row_metaos-wp-plugin.php:64

actionadmin_initos-wp-plugin.php:65

actionadmin_menuos-wp-plugin.php:66

actionwp_heados-wp-plugin.php:68

actionwp_enqueue_scriptsos-wp-plugin.php:69

actionwp_footeros-wp-plugin.php:71

Maintenance & Trust

Online Succes Maintenance & Trust

Maintenance Signals

WordPress version tested6.2.9

Last updatedMay 9, 2023

PHP min version5.6

Downloads2K

Community Trust

Rating0/100

Number of ratings0

Active installs90

Alternatives

Online Succes Alternatives

Lead Forensics

lead-forensics-roi

100

Lead Forensics helps you to turn your anonymous website visitors into paying customers. Our business database is the biggest in the world, so every vi …

8K No CVEs

Leadfeeder by Dealfront

dealfront

100

Turn page views into pipeline.

2K No CVEs

Clickback

clickback-web-tracker

Clickback adds a small line of code to your WordPress site so you can identify companies who have visited your website but haven't converted.

80 No CVEs

Geo Location

geo-location

Plugin that that collect geological info of visitors and display them in Bing Map and gives admin ability to block them.

20 No CVEs

IP Tracking by Gambit Nash

gn-ip-tracking

The IP Tracking plugin from Gambit Nash is an easy way to integrate our B2B IP Tracking service into your WordPress website.

10 No CVEs

Developer Profile

Online Succes Developer Profile

Online Succes

1 plugin · 90 total installs

trust score

Avg Security Score

85/100

Avg Patch Time

30 days

View full developer profile

Detection Fingerprints

How We Detect Online Succes

Patterns used to identify this plugin on WordPress sites during automated security audits and web crawling.

Asset Fingerprints

Asset Paths

/wp-content/plugins/online-succes/js/form-capture.js/wp-content/plugins/online-succes/css/form-capture.css

Script Paths

https://cdn.onlinesucces.nl/js/efc/efc.js

HTML / DOM Fingerprints

CSS Classes

onlineSuccesFormCapture

HTML Comments

Data Attributes

data-os-form-capture

JS Globals

os6_formCapture_js_vars

FAQ