Does Plugin Register have any unpatched vulnerabilities?

No. All known vulnerabilities in Plugin Register have been patched as of the latest data update. Always keep the plugin updated to the latest version.

Is Plugin Register compatible with WordPress 4.7.32?

According to WordPress.org data, Plugin Register 0.6.5 has been tested up to WordPress 4.7.32. Check the plugin's changelog for the latest compatibility information.

Is Plugin Register compatible with PHP 5.6+?

Plugin Register requires PHP 5.6 or higher. Most modern WordPress hosts run PHP 8.1 or 8.2. If you are on an older PHP version, consider upgrading before installing this plugin.

How often is Plugin Register updated?

Plugin Register was last updated on Mar 27, 2018. Frequent updates are generally a positive security signal.

What is Plugin Register's security score?

Plugin Register has a WP-Safety security score of 85/100. This score is computed from CVE history, patch response time, developer trust signals, and plugin maintenance activity.

Plugin Register Security & Risk Analysis

wordpress.org/plugins/plugin-register

For Wordpress plugin developers: keep a register of when and where your plugins are activated.

10 active installs v0.6.5 PHP 5.6+ WP 2.8+ Updated Mar 27, 2018

activationcountdeveloperregisterstatistics

A · Safe

CVEs total0

Unpatched0

Last CVENever

Plugin page Download

Safety Verdict

Is Plugin Register Safe to Use in 2026?

Generally Safe

Score 85/100

Plugin Register has no known CVEs and is actively maintained. It's a solid choice for most WordPress installations.

No known CVEs Updated 8yr ago

Risk Assessment

The "plugin-register" v0.6.5 plugin exhibits a mixed security posture. While it has a zero-known CVE history and a seemingly limited attack surface with no direct entry points like AJAX handlers, REST API routes, or shortcodes, significant concerns arise from the static code analysis. The presence of `create_function`, a notoriously insecure function that can lead to arbitrary code execution, is a critical red flag. Furthermore, a concerning 0% of outputs are properly escaped, meaning any dynamic data displayed to users is vulnerable to cross-site scripting (XSS) attacks. The taint analysis revealing one flow with unsanitized paths further amplifies these risks, particularly a high-severity flow, suggesting a potential for privilege escalation or data leakage if that path is exploitable. The plugin also lacks nonce checks and has only one capability check, leaving many operations potentially vulnerable to CSRF attacks. While the high percentage of prepared statements for SQL queries is a positive, it does not mitigate the risks associated with unescaped output and insecure function usage.

Key Concerns

Dangerous function: create_function used
0% output escaping
High severity taint flow
0 nonce checks
Unsanitized path in taint flow

Vulnerabilities

None known

Plugin Register Security Vulnerabilities

No known vulnerabilities — this is a good sign.

Code Analysis

Analyzed Mar 17, 2026

Plugin Register Code Analysis

Dangerous Functions

Raw SQL Queries

13 prepared

Unescaped Output

0 escaped

Nonce Checks

Capability Checks

File Operations

External Requests

Bundled Libraries

Dangerous Functions Found

create_functionadd_filter( 'wp_mail_content_type', create_function( '', 'return "text/html";' ) );plugin-register.php:468

SQL Query Safety

87% prepared15 total queries

Output Escaping

0% escaped27 total outputs

Data Flows

1 unsanitized

Data Flow Analysis

3 flows1 with unsanitized paths

pluginregister_dashboard_report (plugin-register.php:113)

Source (user input) Sink (dangerous op) Sanitizer Transform Unsanitized Sanitized

Attack Surface

Plugin Register Attack Surface

Entry Points0

Unprotected0

WordPress Hooks 8

actionadmin_noticesplugin-register.class.php:38

actiontemplate_redirectplugin-register.php:51

actionadmin_menuplugin-register.php:52

actionadmin_headplugin-register.php:53

actionadmin_menuplugin-register.php:54

actionwp_dashboard_setupplugin-register.php:55

filtercron_schedulesplugin-register.php:56

filterwp_mail_content_typeplugin-register.php:468

Scheduled Events 1

pluginregister_send_notification_emails

Maintenance & Trust

Plugin Register Maintenance & Trust

Maintenance Signals

WordPress version tested4.7.32

Last updatedMar 27, 2018

PHP min version5.6

Downloads10K

Community Trust

Rating20/100

Number of ratings1

Active installs10

Alternatives

Plugin Register Alternatives

Post Views Counter

post-views-counter

Post Views Counter allows you to collect and display how many times a post, page, or other content has been viewed in a simple, fast and reliable way.

200K 2 CVEs