WP-Safety

Popup Dialog Box – Responsive Message Box Security & Risk Analysis

wordpress.org/plugins/popup-dialog-box

Create a javascript based, light-weight and non-annoying responsive popup dialog box in your blog.

40 active installs v1.2.2 PHP + WP 2.8+ Updated Unknown
message-boxpopup-alert-boxpopup-boxpopup-dialog-boxresponsive-dialog-box
100
A · Safe
CVEs total0
Unpatched0
Last CVENever
Plugin page Download
Safety Verdict

Is Popup Dialog Box – Responsive Message Box Safe to Use in 2026?

Generally Safe

Score 100/100

Popup Dialog Box – Responsive Message Box has no known CVEs and is actively maintained. It's a solid choice for most WordPress installations.

No known CVEs
Risk Assessment

The "popup-dialog-box" v1.2.2 plugin exhibits a mixed security posture. While the absence of known CVEs and critical taint flows are positive indicators, several concerning aspects emerge from the static analysis. The presence of AJAX handlers without authentication checks significantly increases the attack surface, potentially allowing unauthorized users to trigger plugin functionalities. Furthermore, the lack of prepared statements for all SQL queries presents a risk of SQL injection vulnerabilities, especially if user-supplied data is directly incorporated into these queries. The low percentage of properly escaped output also raises concerns about potential cross-site scripting (XSS) vulnerabilities. The plugin's vulnerability history being clean is a strength, suggesting a generally well-maintained codebase, but this does not negate the identified risks in the current version. Overall, the plugin has potential weaknesses that require attention to improve its security.

Key Concerns

  • AJAX handlers without auth checks
  • SQL queries without prepared statements
  • Low percentage of properly escaped output
  • Low capability check coverage
Vulnerabilities
None known

Popup Dialog Box – Responsive Message Box Security Vulnerabilities

No known vulnerabilities — this is a good sign.
Code Analysis
Analyzed Mar 16, 2026

Popup Dialog Box – Responsive Message Box Code Analysis

Dangerous Functions
0
Raw SQL Queries
2
0 prepared
Unescaped Output
193
39 escaped
Nonce Checks
5
Capability Checks
1
File Operations
0
External Requests
0
Bundled Libraries
1

Bundled Libraries

TinyMCE

SQL Query Safety

0% prepared2 total queries

Output Escaping

17% escaped232 total outputs
Data Flows
All sanitized

Data Flow Analysis

2 flows
<dialogbox-settings> (admin\dialogbox-settings.php:0)
Source (user input) Sink (dangerous op) Sanitizer Transform Unsanitized Sanitized
Attack Surface
2 unprotected

Popup Dialog Box – Responsive Message Box Attack Surface

Entry Points5
Unprotected2

AJAX Handlers 3

authwp_ajax_xyz_dbx_ajax_backlinkadmin\ajax-backlink.php:3
authwp_ajax_xyz_dbx_actioncreate-dialogbox.php:38
noprivwp_ajax_xyz_dbx_actioncreate-dialogbox.php:39

Shortcodes 2

[xyz_dbx_default_code] shortcode-handler.php:10
[xyz_dbx_default_code] shortcode-handler.php:15
WordPress Hooks 13
actionadmin_noticesadmin\admin-notices.php:67
actionadmin_menuadmin\menu.php:3
actionadmin_enqueue_scriptsadmin\menu.php:52
filtertiny_mce_before_initadmin\tinymce_filters.php:13
filterformat_for_editoradmin\tinymce_filters.php:28
actionafter_wp_tiny_mceadmin\tinymce_filters.php:53
actionget_footercreate-dialogbox.php:6
actionget_footercreate-dialogbox.php:10
actionwpcreate-dialogbox.php:19
actionwp_footerpopup-dialog-box.php:49
filterquery_varspopup-dialog-box.php:60
actionparse_requestpopup-dialog-box.php:69
filterplugin_row_metaxyz-functions.php:18
Maintenance & Trust

Popup Dialog Box – Responsive Message Box Maintenance & Trust

Maintenance Signals

WordPress version tested4.9.29
Last updatedUnknown
PHP min version
Downloads45K

Community Trust

Rating64/100
Number of ratings6
Active installs40
Alternatives

Popup Dialog Box – Responsive Message Box Alternatives

ITRO Popup Plugin

ITRO Popup Plugin

itro-popup

A
85

Display a popup to your WordPress site: age verification popup for adult-content site ★ multilanguage popup with qTransalte-X ★ very easy to use

6K No CVEs
Popup Like box – Page Plugin

Popup Like box – Page Plugin

ays-facebook-popup-likebox

A
96

With the help of this amazing plugin you can promote your Facebook page and add number of Likes , which is very important today.

100 4 CVEs
WP Fancy Message Box

WP Fancy Message Box

wp-fancy-message-box

A
100

Display Fancy CSS Message Box in Page/Post via short code

50 No CVEs
NS WordPress Custom Alert Popup Box

NS WordPress Custom Alert Popup Box

ns-custom-alert-popup-box

A
85

Easy way to show a totally customizable popup to user or customer. Inside your popup, you can add shortcode, text and images thanks to WYSIWYG editor.

10 No CVEs
Quick Box – Onclick Popup Notification Box

Quick Box – Onclick Popup Notification Box

quick-box-popup

A
85

Create a javascript based, light-weight and non-annoying onclick popup box in your blog.

10 No CVEs
Developer Profile

Popup Dialog Box – Responsive Message Box Developer Profile

f1logic

15 plugins · 142K total installs

73
trust score
Avg Security Score
92/100
Avg Patch Time
352 days
View full developer profile
Detection Fingerprints

How We Detect Popup Dialog Box – Responsive Message Box

Patterns used to identify this plugin on WordPress sites during automated security audits and web crawling.

Asset Fingerprints

Asset Paths
/wp-content/plugins/popup-dialog-box/css/style.css/wp-content/plugins/popup-dialog-box/js/notice.js/wp-content/plugins/popup-dialog-box/dbx_request.js
Version Parameters
popup-dialog-box/css/style.css?ver=popup-dialog-box/js/notice.js?ver=

HTML / DOM Fingerprints

CSS Classes
xyz_dbx_container
Data Attributes
xyz_dbx_ajax_object
JS Globals
xyz_dbx_ajax_object
Shortcode Output
<span id='xyz_dbx_container'></span>
FAQ

Frequently Asked Questions about Popup Dialog Box – Responsive Message Box