Does Import Listings into the PointFinder Theme have any unpatched vulnerabilities?

No. All known vulnerabilities in Import Listings into the PointFinder Theme have been patched as of the latest data update. Always keep the plugin updated to the latest version.

Is Import Listings into the PointFinder Theme compatible with WordPress 6.7.5?

According to WordPress.org data, Import Listings into the PointFinder Theme 1.0.3 has been tested up to WordPress 6.7.5. Check the plugin's changelog for the latest compatibility information.

How often is Import Listings into the PointFinder Theme updated?

Import Listings into the PointFinder Theme was last updated on Dec 15, 2024. Frequent updates are generally a positive security signal.

What is Import Listings into the PointFinder Theme's security score?

Import Listings into the PointFinder Theme has a WP-Safety security score of 92/100. This score is computed from CVE history, patch response time, developer trust signals, and plugin maintenance activity.

Import Listings into the PointFinder Theme Security & Risk Analysis

wordpress.org/plugins/pointfinder-xml-csv-listings-import

Easily import listings from any XML or CSV file to the PointFinder theme with the PointFinder Add-On for WP All Import.

40 active installs v1.0.3 PHP + WP 5.0+ Updated Dec 15, 2024

business-directoryimport-business-listingsimport-directoryimport-listingswp-job-manager

A · Safe

CVEs total0

Unpatched0

Last CVENever

Plugin page Download

Safety Verdict

Is Import Listings into the PointFinder Theme Safe to Use in 2026?

Generally Safe

Score 92/100

Import Listings into the PointFinder Theme has no known CVEs and is actively maintained. It's a solid choice for most WordPress installations.

No known CVEs Updated 1yr ago

Risk Assessment

The plugin exhibits a mixed security posture. On one hand, the absence of known vulnerabilities and the use of prepared statements for SQL queries are positive indicators of good development practices. The plugin also has a very limited attack surface, with no registered AJAX handlers, REST API routes, shortcodes, or cron events exposed. However, several concerning signals were identified in the static code analysis. The presence of the 'unserialize' function without any apparent validation or sanitization is a significant risk, as it can be exploited for remote code execution if user-controlled data is passed to it. Furthermore, the limited capability checks and nonce checks present across the plugin's entry points, coupled with a moderate percentage of improperly escaped output, suggest potential weaknesses that could be leveraged by attackers.

Key Concerns

Dangerous function: unserialize
Capability checks: 0
Output escaping: 43% properly escaped
Nonce checks: 0

Vulnerabilities

None known

Import Listings into the PointFinder Theme Security Vulnerabilities

No known vulnerabilities — this is a good sign.

Code Analysis

Analyzed Mar 16, 2026

Import Listings into the PointFinder Theme Code Analysis

Dangerous Functions

Raw SQL Queries

0 prepared

Unescaped Output

6 escaped

Nonce Checks

Capability Checks

File Operations

External Requests

Bundled Libraries

Dangerous Functions Found

unserialize$fieldData = (!empty($field_params['field_obj']->post_content)) ? unserialize($field_params['field_orapid-addon.php:548

Output Escaping

43% escaped14 total outputs

Attack Surface

Import Listings into the PointFinder Theme Attack Surface

Entry Points0

Unprotected0

WordPress Hooks 16

filterpmxi_addonsrapid-addon.php:137

filterwp_all_import_addon_parserapid-addon.php:138

filterwp_all_import_addon_importrapid-addon.php:139

filterwp_all_import_addon_saved_postrapid-addon.php:140

filterpmxi_options_optionsrapid-addon.php:141

filterwp_all_import_image_sectionsrapid-addon.php:142

filterpmxi_custom_typesrapid-addon.php:143

filterpmxi_post_list_orderrapid-addon.php:144

filterwp_all_import_post_type_imagerapid-addon.php:145

actionpmxi_extend_options_featuredrapid-addon.php:146

actionadmin_initrapid-addon.php:147

filterwp_all_import_acf_is_show_grouprapid-addon.php:212

filterwp_all_import_is_show_add_new_imagesrapid-addon.php:914

filterwp_all_import_is_allow_import_imagesrapid-addon.php:917

filterwp_all_import_is_images_section_enabledrapid-addon.php:966

actionadmin_noticesrapid-addon.php:1147

Maintenance & Trust

Import Listings into the PointFinder Theme Maintenance & Trust

Maintenance Signals

WordPress version tested6.7.5

Last updatedDec 15, 2024

PHP min version

Downloads4K

Community Trust

Rating100/100

Number of ratings1

Active installs40

Alternatives

Import Listings into the PointFinder Theme Alternatives

WP All Import – Listings Import for Listify

listify-xml-csv-listings-import

100

Drag & drop to import directory listings from any CSV, XML, Excel, or Google Sheets file of any size or format. Supports images, categories, locat …

400 No CVEs

WP All Import – Job Listing Import for WP Job Manager

wp-job-manager-xml-csv-listings-import

100

Drag & drop to import job listings from any CSV, XML, Excel, or Google Sheets file of any size or format. Supports company info, locations, applic …

2K No CVEs

WP All Import – Job Listing Import for Jobify

jobify-xml-csv-listings-import

100

Drag & drop to import job listings from any CSV, XML, Excel, or Google Sheets file of any size or format. Supports company info, locations, catego …

100 No CVEs

WP All Import – WP Job Manager Field Editor Add-On

smyles-wp-job-manager-field-editor-import

Support for custom fields created with WP Job Manager Field Editor when importing Jobs or Resumes using WP All Import

100 No CVEs

WP All Import – Listings Import for Listable

import-xml-csv-listings-to-listable-theme

100

Drag & drop to import directory listings from any CSV, XML, Excel, or Google Sheets file of any size or format. Supports images, categories, locat …

80 No CVEs

Developer Profile

Import Listings into the PointFinder Theme Developer Profile

Web Builder 143

5 plugins · 11K total installs

trust score

Avg Security Score

95/100

Avg Patch Time

39 days

View full developer profile

Detection Fingerprints

How We Detect Import Listings into the PointFinder Theme

Patterns used to identify this plugin on WordPress sites during automated security audits and web crawling.

Asset Fingerprints

Asset Paths

/wp-content/plugins/pointfinder-xml-csv-listings-import/css/pf-select2.css/wp-content/plugins/pointfinder-xml-csv-listings-import/css/pointfinder-addon.css/wp-content/plugins/pointfinder-xml-csv-listings-import/js/pf-select2.js/wp-content/plugins/pointfinder-xml-csv-listings-import/js/pointfinder-addon.js

Script Paths

/wp-content/plugins/pointfinder-xml-csv-listings-import/js/pointfinder-addon.js

HTML / DOM Fingerprints

CSS Classes

pf_select2_container

HTML Comments

+11 more

Data Attributes

name="webbupointfinder_item_featuredmarker"name="webbupointfinder_item_verified"name="webbupointfinder_item_point_visibility"name="webbupointfinder_items_address"name="webbupointfinder_item_streetview_angle"name="webbupointfinder_item_streetview_pitch"+28 more

JS Globals

pointfinder_addon_params

FAQ