Popup and Widget Builder: Lead Capture, Exit Intent, Forms, Quizzes, Gamification Security & Risk Analysis
wordpress.org/plugins/poperPopups Builder that uses AI to convert visitors into customers, increase subscriber count, and skyrocket sales. Create engaging widgets & videos.
Is Popup and Widget Builder: Lead Capture, Exit Intent, Forms, Quizzes, Gamification Safe to Use in 2026?
Generally Safe
Score 100/100Popup and Widget Builder: Lead Capture, Exit Intent, Forms, Quizzes, Gamification has no known CVEs and is actively maintained. It's a solid choice for most WordPress installations.
The "poper" plugin v1.0.14 demonstrates several positive security practices, including the complete absence of dangerous functions, all SQL queries utilizing prepared statements, and proper output escaping for all identified outputs. Furthermore, there is no recorded history of vulnerabilities, which suggests a commitment to security or a lack of prior exploitation. The plugin also avoids file operations and external HTTP requests, further reducing potential attack vectors. However, a significant concern arises from the presence of four unprotected AJAX handlers, which represent a considerable attack surface with no authentication or capability checks. While the taint analysis shows no critical or high-severity flows, the lack of checks on these entry points could still allow for potential misuse if malicious data were to be passed. The presence of one nonce check and one capability check is positive but insufficient given the number of unprotected AJAX endpoints.
Key Concerns
- Four unprotected AJAX handlers
- Limited authorization checks on entry points
Popup and Widget Builder: Lead Capture, Exit Intent, Forms, Quizzes, Gamification Security Vulnerabilities
Popup and Widget Builder: Lead Capture, Exit Intent, Forms, Quizzes, Gamification Code Analysis
Output Escaping
Data Flow Analysis
Popup and Widget Builder: Lead Capture, Exit Intent, Forms, Quizzes, Gamification Attack Surface
AJAX Handlers 4
WordPress Hooks 8
Maintenance & Trust
Popup and Widget Builder: Lead Capture, Exit Intent, Forms, Quizzes, Gamification Maintenance & Trust
Maintenance Signals
Community Trust
Popup and Widget Builder: Lead Capture, Exit Intent, Forms, Quizzes, Gamification Alternatives
AI Popup Builder & Popup Maker by OptiMonk
exit-intent-popups-by-optimonk
💥 Popups, supercharged: One platform. Hundreds of use cases. Increase sales & subscribers with popups visitors actually 🧡 love.
OptinCraft – Drag & Drop Optins & Popup Builder for WordPress
optincraft
Build stunning and high-converting optins & popups with OptinCraft, the powerful WordPress drag and drop popup builder & popup maker to boost sales.
Popup Maker – Boost Sales, Conversions, Optins, Subscribers with the Ultimate WP Popups Builder
popup-maker
Want to boost sales & marketing efforts? Use your favorite forms & builder. Unlimited popups & impressions, keep your data, no monthly subscription.
Hello Bar Popup Builder: Design Engaging Popups on WordPress
hellobar
Easily add a Popup to your WordPress site with the official HelloBar WordPress plugin.
Popupsmart
popupsmart
Boost conversions effortlessly with Popupsmart's feature-rich popup builder for your WordPress website, enhancing user experience.
Popup and Widget Builder: Lead Capture, Exit Intent, Forms, Quizzes, Gamification Developer Profile
2 plugins · 400 total installs
How We Detect Popup and Widget Builder: Lead Capture, Exit Intent, Forms, Quizzes, Gamification
Patterns used to identify this plugin on WordPress sites during automated security audits and web crawling.
Asset Fingerprints
/wp-content/plugins/poper/style.css/wp-content/plugins/poper/script.jshttps://app.poper.ai/share/poper.jspoper-adminHTML / DOM Fingerprints
poper-containersubmit-btnwhite-btn<!-- Poper Code Start - poper.ai --><!-- Poper Code End -->data-account-idwindow.Poper