Does Import Members from CSV for Paid Memberships Pro have any unpatched vulnerabilities?

No. All known vulnerabilities in Import Members from CSV for Paid Memberships Pro have been patched as of the latest data update. Always keep the plugin updated to the latest version.

Is Import Members from CSV for Paid Memberships Pro compatible with WordPress 5.8.13?

According to WordPress.org data, Import Members from CSV for Paid Memberships Pro 3.1.4 has been tested up to WordPress 5.8.13. Check the plugin's changelog for the latest compatibility information.

Is Import Members from CSV for Paid Memberships Pro compatible with PHP 7.3+?

Import Members from CSV for Paid Memberships Pro requires PHP 7.3 or higher. Most modern WordPress hosts run PHP 8.1 or 8.2. If you are on an older PHP version, consider upgrading before installing this plugin.

What is Import Members from CSV for Paid Memberships Pro's security score?

Import Members from CSV for Paid Memberships Pro has a WP-Safety security score of 100/100. This score is computed from CVE history, patch response time, developer trust signals, and plugin maintenance activity.

Import Members from CSV for Paid Memberships Pro Security & Risk Analysis

wordpress.org/plugins/pmpro-import-members-from-csv

Import and create user + PMPro member records from a CSV file on your WordPress with Paid Memberships Pro website. The plugin will import the membersh …

100 active installs v3.1.4 PHP 7.3+ WP 5.0+ Updated Unknown

batchcsvimportuserusers

A · Safe

CVEs total0

Unpatched0

Last CVENever

Plugin page Download

Safety Verdict

Is Import Members from CSV for Paid Memberships Pro Safe to Use in 2026?

Generally Safe

Score 100/100

Import Members from CSV for Paid Memberships Pro has no known CVEs and is actively maintained. It's a solid choice for most WordPress installations.

No known CVEs

Risk Assessment

The plugin "pmpro-import-members-from-csv" v3.1.4 exhibits a generally strong security posture based on the provided static analysis and vulnerability history. All identified entry points (AJAX handlers) have authentication checks, and the code demonstrates good practices with a high percentage of SQL queries using prepared statements and properly escaped output. The absence of any known CVEs, unpatched vulnerabilities, or recorded common vulnerability types further reinforces this positive assessment.

While the code analysis reveals no critical or high-severity taint flows, and no dangerous functions were detected, a minor concern exists regarding the file operations. With 9 file operations, this area could be a potential target for vulnerabilities if not handled with extreme care, although no specific issues were flagged. The limited number of capability checks (2) compared to the number of AJAX handlers (5) might also warrant further investigation to ensure all sensitive operations are adequately protected by granular permissions.

Overall, the plugin appears to be well-developed with security in mind. The lack of historical vulnerabilities and robust implementation of security features like prepared statements and output escaping are significant strengths. The primary area for vigilance would be the file operation functionality, ensuring it is implemented with robust input validation and sanitization to prevent any potential risks.

Key Concerns

File operations present potential risks
Limited capability checks for AJAX handlers

Vulnerabilities

None known

Import Members from CSV for Paid Memberships Pro Security Vulnerabilities

No known vulnerabilities — this is a good sign.

Code Analysis

Analyzed Mar 16, 2026

Import Members from CSV for Paid Memberships Pro Code Analysis

Dangerous Functions

Raw SQL Queries

14 prepared

Unescaped Output

33 escaped

Nonce Checks

Capability Checks

File Operations

External Requests

Bundled Libraries

SQL Query Safety

93% prepared15 total queries

Output Escaping

87% escaped38 total outputs

Attack Surface

Import Members from CSV for Paid Memberships Pro Attack Surface

Entry Points5

Unprotected0

AJAX Handlers 5

authwp_ajax_import_from_csvsrc\import\class-ajax.php:90

authwp_ajax_cleanup_csvsrc\import\class-ajax.php:91

authwp_ajax_clear_logsrc\import\class-ajax.php:92

authwp_ajax_e20r_visitor_clicked_donationsrc\import\class-ajax.php:94

noprivwp_ajax_e20r_visitor_clicked_donationsrc\import\class-ajax.php:95

WordPress Hooks 62

actionadmin_noticesclass-activateutilitiesplugin.php:151

actionadmin_noticesclass-activateutilitiesplugin.php:173

actionadmin_noticesclass-activateutilitiesplugin.php:188

actionadmin_initclass-activateutilitiesplugin.php:213

actionadmin_noticesclass.pmpro-import-members.php:165

actionplugins_loadedclass.pmpro-import-members.php:202

actionwp_loadedsrc\class-email-templates.php:62

actionwp_mail_failedsrc\class-email-templates.php:63

actioninitsrc\class-import-members.php:154

actionplugins_loadedsrc\class-import-members.php:156

actionplugins_loadedsrc\class-import-members.php:157

actionplugins_loadedsrc\class-import-members.php:158

actionplugins_loadedsrc\class-import-members.php:159

actionplugins_loadedsrc\class-import-members.php:160

actionplugins_loadedsrc\class-import-members.php:163

actionplugins_loadedsrc\class-import-members.php:164

actionplugins_loadedsrc\class-import-members.php:165

actioninitsrc\class-import-members.php:167

actioninitsrc\class-import-members.php:168

actionadmin_enqueue_scriptssrc\class-import-members.php:170

actione20r_after_user_importsrc\class-import-members.php:176

actione20r_after_user_importsrc\class-import-members.php:185

filterplugin_row_metasrc\class-import-members.php:188

actionwp_loadedsrc\class-import-members.php:191

filtersend_email_change_emailsrc\import\class-csv.php:401

filtersend_password_change_emailsrc\import\class-csv.php:402

actionadmin_menusrc\import\class-page.php:75

actionadmin_noticessrc\import\class-page.php:76

actionadmin_bar_menusrc\import\class-page.php:77

filtere20r_import_supported_fieldssrc\modules\BuddyPress\class-buddypress.php:90

actione20r_import_load_licensed_modulessrc\modules\BuddyPress\class-buddypress.php:140

filtere20r_import_errors_to_ignoresrc\modules\BuddyPress\class-column-validation.php:56

filtere20r_import_members_validate_field_datasrc\modules\BuddyPress\class-column-validation.php:106

filtere20r_import_errors_to_ignoresrc\modules\PMPro\class-column-validation.php:48

filtere20r_import_members_validate_field_datasrc\modules\PMPro\class-column-validation.php:73

filtere20r_import_members_validate_field_datasrc\modules\PMPro\class-column-validation.php:74

filtere20r_import_members_validate_field_datasrc\modules\PMPro\class-column-validation.php:75

filtere20r_import_members_validate_field_datasrc\modules\PMPro\class-column-validation.php:76

filtere20r_import_members_validate_field_datasrc\modules\PMPro\class-column-validation.php:77

filtere20r_import_members_validate_field_datasrc\modules\PMPro\class-column-validation.php:78

filtere20r_import_members_validate_field_datasrc\modules\PMPro\class-column-validation.php:79

filtere20r_import_members_validate_field_datasrc\modules\PMPro\class-column-validation.php:80

filtere20r_import_members_validate_field_datasrc\modules\PMPro\class-column-validation.php:81

filtere20r_import_members_validate_field_datasrc\modules\PMPro\class-column-validation.php:82

filtere20r_import_members_validate_field_datasrc\modules\PMPro\class-column-validation.php:83

filtere20r_import_members_validate_field_datasrc\modules\PMPro\class-column-validation.php:84

filtere20r_import_members_validate_field_datasrc\modules\PMPro\class-column-validation.php:85

actione20r_before_user_importsrc\modules\PMPro\class-import-member.php:99

actione20r_after_user_importsrc\modules\PMPro\class-import-member.php:100

filterpmpro_deactivate_old_levelssrc\modules\PMPro\class-import-member.php:341

filterpmpro_cancel_previous_subscriptionssrc\modules\PMPro\class-import-member.php:342

actionpmpro_after_change_membership_levelsrc\modules\PMPro\class-import-member.php:358

actione20r_import_load_licensed_modulessrc\modules\PMPro\class-import-sponsors.php:69

filtere20r_import_supported_fieldssrc\modules\PMPro\class-import-sponsors.php:70

actione20r_after_user_importsrc\modules\PMPro\class-import-sponsors.php:109

actione20r_import_load_licensed_modulessrc\modules\PMPro\class-import-sponsors.php:473

filtere20r_import_supported_fieldssrc\modules\PMPro\class-pmpro.php:101

filtere20r_import_default_field_valuessrc\modules\PMPro\class-pmpro.php:102

filtere20r_import_errors_to_ignoresrc\modules\Users\class-column-validation.php:45

filtere20r_import_users_validate_field_datasrc\modules\Users\class-column-validation.php:72

filtere20r_import_usermetasrc\modules\Users\class-import-user.php:60

filtere20r_import_users_validate_field_datasrc\modules\Users\class-user-validation.php:57

Maintenance & Trust

Import Members from CSV for Paid Memberships Pro Maintenance & Trust

Maintenance Signals

WordPress version tested5.8.13

Last updatedUnknown

PHP min version7.3

Downloads10K

Community Trust

Rating100/100

Number of ratings2

Active installs100

Alternatives

Import Members from CSV for Paid Memberships Pro Alternatives

Export and Import Users and Customers

users-customers-import-export-for-wp-woocommerce

Import and export WordPress users and WooCommerce customers using CSV. Migrate to your new site without any data loss.

60K 9 CVEs

Import Users from CSV

import-users-from-csv

Import users from a CSV into WordPress

20K 1 CVE

User Import with meta – WP Ultimate CSV Importer Add-on

import-users

100

Import and export WordPress and WooCommerce users with full user meta, custom fields, billing & shipping details, and membership data.

5K No CVEs

Export Users Data to CSV

export-users-data-to-csv

Export Users Data and Metadata to a csv file

200 No CVEs

ClassiPress Ads Importer plugin

appthemes-classipress-ads-importer-plugin

Import Ads+Users from CSV file in ClassiPress Theme

20 No CVEs

Developer Profile

Import Members from CSV for Paid Memberships Pro Developer Profile

Thomas S

3 plugins · 170 total installs

trust score

Avg Security Score

90/100

Avg Patch Time

30 days

View full developer profile

Detection Fingerprints

How We Detect Import Members from CSV for Paid Memberships Pro

Patterns used to identify this plugin on WordPress sites during automated security audits and web crawling.

Asset Fingerprints

Asset Paths

/wp-content/plugins/pmpro-import-members-from-csv/assets/css/bootstrap.css/wp-content/plugins/pmpro-import-members-from-csv/assets/css/font-awesome.min.css/wp-content/plugins/pmpro-import-members-from-csv/assets/css/import-members.css/wp-content/plugins/pmpro-import-members-from-csv/assets/js/admin.js/wp-content/plugins/pmpro-import-members-from-csv/assets/js/vendor/bootstrap.min.js/wp-content/plugins/pmpro-import-members-from-csv/assets/js/vendor/jquery.validate.min.js

Version Parameters

/wp-content/plugins/pmpro-import-members-from-csv/assets/css/bootstrap.css?ver=/wp-content/plugins/pmpro-import-members-from-csv/assets/css/font-awesome.min.css?ver=/wp-content/plugins/pmpro-import-members-from-csv/assets/css/import-members.css?ver=/wp-content/plugins/pmpro-import-members-from-csv/assets/js/admin.js?ver=/wp-content/plugins/pmpro-import-members-from-csv/assets/js/vendor/bootstrap.min.js?ver=/wp-content/plugins/pmpro-import-members-from-csv/assets/js/vendor/jquery.validate.min.js?ver=

HTML / DOM Fingerprints

CSS Classes

e20r-import-members-form

Data Attributes

data-e20r-import-members-nonce

JS Globals

E20R_IMPORT_AJAX_URLE20R_IMPORT_AJAX_NONCE

FAQ