WP-Safety

Pinpoll Security & Risk Analysis

wordpress.org/plugins/pinpoll

Engage with your audience.

40 active installs v4.0.0 PHP + WP 3.3.0+ Updated Oct 8, 2020
analyticsfeedbackmarketingpollsurvey
63
C · Use Caution
CVEs total1
Unpatched1
Last CVEDec 30, 2025
Plugin page Download
Safety Verdict

Is Pinpoll Safe to Use in 2026?

Use With Caution

Score 63/100

Pinpoll has 1 unpatched vulnerability. Evaluate alternatives or apply available mitigations.

1 known CVE 1 unpatched Last CVE: Dec 30, 2025Updated 5yr ago
Risk Assessment
Assessment pending
Vulnerabilities
1 published

Pinpoll Security Vulnerabilities

CVEs by Year

1 CVE in 2025 · unpatched
2025
Patched Has unpatched

Severity Breakdown

Medium
1

1 total CVE

CVE-2025-68889medium · 6.1Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting')

Pinpoll <= 4.0.0 - Reflected Cross-Site Scripting

Dec 30, 2025Unpatched
Version History

Pinpoll Release Timeline

v4.0.0Current1 CVE
CVE-2025-68889
v3.0.221 CVE
CVE-2025-68889
v3.0.211 CVE
CVE-2025-68889
v3.0.201 CVE
CVE-2025-68889
v3.0.191 CVE
CVE-2025-68889
v3.0.181 CVE
CVE-2025-68889
v3.0.171 CVE
CVE-2025-68889
v3.0.161 CVE
CVE-2025-68889
v3.0.141 CVE
CVE-2025-68889
v3.0.131 CVE
CVE-2025-68889
v3.0.121 CVE
CVE-2025-68889
v3.0.111 CVE
CVE-2025-68889
v3.0.101 CVE
CVE-2025-68889
v3.0.91 CVE
CVE-2025-68889
v3.0.81 CVE
CVE-2025-68889
v3.0.71 CVE
CVE-2025-68889
v3.0.61 CVE
CVE-2025-68889
v3.0.51 CVE
CVE-2025-68889
v3.0.41 CVE
CVE-2025-68889
v3.0.31 CVE
CVE-2025-68889
Code Analysis
Analyzed Mar 16, 2026

Pinpoll Code Analysis

Dangerous Functions
0
Raw SQL Queries
0
4 prepared
Unescaped Output
19
30 escaped
Nonce Checks
4
Capability Checks
0
File Operations
0
External Requests
12
Bundled Libraries
1

Bundled Libraries

TinyMCE

SQL Query Safety

100% prepared4 total queries

Output Escaping

61% escaped49 total outputs
Data Flows · Security
6 unsanitized

Data Flow Analysis

6 flows6 with unsanitized paths
search_box (admin\includes\class-wp-list-table.php:346)
Source (user input) Sink (dangerous op) Sanitizer Transform Unsanitized Sanitized
Attack Surface

Pinpoll Attack Surface

Entry Points1
Unprotected0

Shortcodes 1

[pinpoll] pinpoll.php:56
WordPress Hooks 4
actionadmin_footeradmin\includes\class-wp-list-table.php:157
actionwp_loadedadmin\pinpoll-account-status.php:43
actionadmin_initpinpoll.php:55
actioninitpinpoll.php:61
Maintenance & Trust

Pinpoll Maintenance & Trust

Maintenance Signals

WordPress version tested5.5.18
Last updatedOct 8, 2020
PHP min version
Downloads11K

Community Trust

Rating96/100
Number of ratings10
Active installs40
Alternatives

Pinpoll Alternatives

RAWR for WordPress

RAWR for WordPress

rawr

A
85

You got information - we got conversation! Rawr widgets sit right within the story and help your users to express and share their opinion with others.

10 No CVEs
SH Advance Polls

SH Advance Polls

sh-advance-polls

A
100

You can create polls and surveys for your audience and observe the full analytics in the admin panel.

0 No CVEs
UserFeedback – Create Interactive Feedback Form, User Surveys, and Polls in Seconds

UserFeedback – Create Interactive Feedback Form, User Surveys, and Polls in Seconds

userfeedback-lite

A
88

Ultimate user feedback plugin to ask questions, surveys, polls, from your website in seconds

200K 9 CVEs
WP ULike – Like & Dislike Buttons for Engagement and Feedback

WP ULike – Like & Dislike Buttons for Engagement and Feedback

wp-ulike

A
88

Voting buttons that let your visitors give instant feedback. See what your audience loves with no registration, no friction, just one click.

60K 17 CVEs
SurveyX Builder – Easy Feedback, Poll, Quiz & Survey

SurveyX Builder – Easy Feedback, Poll, Quiz & Survey

surveyx-builder

A
100

Create surveys, polls, quizzes, and feedback forms. Fast, lightweight, and optimized to boost responses and user engagement.

1K No CVEs
Developer Profile

Pinpoll Developer Profile

Pinpoll

1 plugin · 40 total installs

68
trust score
Avg Security Score
63/100
Avg Patch Time
30 days
View full developer profile
Detection Fingerprints

How We Detect Pinpoll

Patterns used to identify this plugin on WordPress sites during automated security audits and web crawling.

Asset Fingerprints

Asset Paths
/wp-content/plugins/pinpoll/admin/css/pinpoll.css/wp-content/plugins/pinpoll/admin/js/pinpoll.js
Script Paths
/wp-content/plugins/pinpoll/admin/js/pinpoll.js
Version Parameters
pinpoll/admin/css/pinpoll.css?ver=pinpoll/admin/js/pinpoll.js?ver=

HTML / DOM Fingerprints

CSS Classes
pinpoll-admin
Data Attributes
data-pinpoll-id
JS Globals
pinpoll_admin
Shortcode Output
wp_oembed_get( PINPOLL_URL.'/embed/'
FAQ

Frequently Asked Questions about Pinpoll