Does Pending Status have any unpatched vulnerabilities?

No published vulnerabilities and no findings under coordinated disclosure as of the latest data update. Always keep the plugin updated to the latest version.

Is Pending Status compatible with WordPress 6.8.5?

According to WordPress.org data, Pending Status 1.0.4 has been tested up to WordPress 6.8.5. Check the plugin's changelog for the latest compatibility information.

Is Pending Status compatible with PHP 7.0.0+?

Pending Status requires PHP 7.0.0 or higher. Most modern WordPress hosts run PHP 8.1 or 8.2. If you are on an older PHP version, consider upgrading before installing this plugin.

How often is Pending Status updated?

Pending Status was last updated on Apr 24, 2025. Frequent updates are generally a positive security signal.

What is Pending Status's security score?

Pending Status has a WP-Safety security score of 92/100. This score is computed from CVE history, patch response time, developer trust signals, and plugin maintenance activity.

Pending Status Security & Risk Analysis

wordpress.org/plugins/pending-status

Get notified when your site has posts pending review.

100 active installs v1.0.4 PHP 7.0.0+ WP 4.9+ Updated Apr 24, 2025

notificationspendingpending-reviewpost-statusworkflow

A · Safe

CVEs total0

Unpatched0

Last CVENever

Plugin page Download

Safety Verdict

Is Pending Status Safe to Use in 2026?

Generally Safe

Score 92/100

Pending Status has no known CVEs and is actively maintained. It's a solid choice for most WordPress installations.

No known CVEs Updated 1yr ago

Risk Assessment

The "pending-status" plugin version 1.0.4 demonstrates a generally good security posture based on the static analysis. The absence of any recorded CVEs and the clean taint analysis results are significant strengths, indicating no known critical vulnerabilities and no identified insecure data flows within the analyzed code. The plugin also adheres to several WordPress security best practices, including using prepared statements for its single SQL query, performing nonce checks, and implementing capability checks. Furthermore, the plugin exhibits strong output escaping, with 80% of its outputs being properly escaped. The limited attack surface with no apparent entry points without authentication is also a positive indicator.

Vulnerabilities

None known

Pending Status Security Vulnerabilities

No known vulnerabilities — this is a good sign.

Version History

Pending Status Release Timeline

v1.0.4Current

v1.0.3

v1.0.2

v1.0.1

v1.0.0

Code Analysis

Analyzed Mar 16, 2026

Pending Status Code Analysis

Dangerous Functions

Raw SQL Queries

1 prepared

Unescaped Output

24 escaped

Nonce Checks

Capability Checks

File Operations

External Requests

Bundled Libraries

SQL Query Safety

100% prepared1 total queries

Output Escaping

80% escaped30 total outputs

Data Flows · Security

All sanitized

Data Flow Analysis

2 flows

admin_page_callback (class-pending-status.php:54)

Source (user input) Sink (dangerous op) Sanitizer Transform Unsanitized Sanitized

Attack Surface

Pending Status Attack Surface

Entry Points0

Unprotected0

WordPress Hooks 7

actioninitclass-pending-status.php:23

actionadmin_menuclass-pending-status.php:26

actionadmin_enqueue_scriptsclass-pending-status.php:29

actionsave_postclass-pending-status.php:32

actionwp_dashboard_setupclass-pending-status.php:35

actionplugins_loadedpending-status.php:51

actionadmin_noticespending-status.php:109

Maintenance & Trust

Pending Status Maintenance & Trust

Maintenance Signals

WordPress version tested6.8.5

Last updatedApr 24, 2025

PHP min version7.0.0

Downloads4K

Community Trust

Rating100/100

Number of ratings2

Active installs100

Alternatives

Pending Status Alternatives

PublishPress Statuses – Custom Post Status and Workflow

publishpress-statuses

100

The PublishPress Statuses plugin allows you to create additional statuses for your posts. You can use each status to create publishing workflows.

1K No CVEs

Simple Post Alerts

simple-post-alerts

Allows users to easily get alerts for new posts pending review and published.

10 No CVEs

Pending Submission Notifications

pending-submission-notifications

Email notifications for pending review content submission.

1K No CVEs

Contributor Notifications

contributor-notifications

100

An incredibly simple and lightweight solution for alerting you of new pending posts from contributors and alerting contributors when their submissions …

80 No CVEs

WP Unpublish

wp-unpublish

WP Unpublish adds a post status "Unpublished" to your WordPress Posts (Classic Editor).

40 No CVEs

Developer Profile

Pending Status Developer Profile

Room 34 Creative Services, LLC

10 plugins · 14K total installs

trust score

Avg Security Score

92/100

Avg Patch Time

138 days

View full developer profile

Detection Fingerprints

How We Detect Pending Status

Patterns used to identify this plugin on WordPress sites during automated security audits and web crawling.

Asset Fingerprints

Asset Paths

/wp-content/plugins/pending-status/assets/admin-style.css

Version Parameters

pending-status/assets/admin-style.css?ver=

HTML / DOM Fingerprints

CSS Classes

r34ps-admin-notice

HTML Comments

Data Attributes

data-dismiss="alert"

JS Globals

r34ps

FAQ