Does Post Call to Action have any unpatched vulnerabilities?

No. All known vulnerabilities in Post Call to Action have been patched as of the latest data update. Always keep the plugin updated to the latest version.

Is Post Call to Action compatible with WordPress 5.0.25?

According to WordPress.org data, Post Call to Action 1.0.1 has been tested up to WordPress 5.0.25. Check the plugin's changelog for the latest compatibility information.

How often is Post Call to Action updated?

Post Call to Action was last updated on Unknown. Frequent updates are generally a positive security signal.

What is Post Call to Action's security score?

Post Call to Action has a WP-Safety security score of 100/100. This score is computed from CVE history, patch response time, developer trust signals, and plugin maintenance activity.

Post Call to Action Security & Risk Analysis

wordpress.org/plugins/post-call-to-action

Increase online conversions with a "Call to Action" bar at the bottom of your blog posts. Customize the button text and colors.

10 active installs v1.0.1 PHP + WP 4.6+ Updated Unknown

admincall-to-actionnavigationpage-linkseo

A · Safe

CVEs total0

Unpatched0

Last CVENever

Download

Safety Verdict

Is Post Call to Action Safe to Use in 2026?

Generally Safe

Score 100/100

Post Call to Action has no known CVEs and is actively maintained. It's a solid choice for most WordPress installations.

No known CVEs

Risk Assessment

The "post-call-to-action" plugin v1.0.1 exhibits a generally strong security posture based on the provided static analysis. The plugin demonstrates adherence to good practices by not utilizing dangerous functions, performing all SQL queries using prepared statements, and conducting file operations. The absence of external HTTP requests and the presence of nonce and capability checks are also positive indicators. However, a significant concern arises from the low percentage of properly escaped output, with only 42% being secure. This leaves a substantial portion of the plugin's output potentially vulnerable to Cross-Site Scripting (XSS) attacks if user-supplied data is not adequately sanitized before being displayed.

Key Concerns

Low percentage of output escaping

Vulnerabilities

None known

Post Call to Action Security Vulnerabilities

No known vulnerabilities — this is a good sign.

Code Analysis

Analyzed Mar 16, 2026

Post Call to Action Code Analysis

Dangerous Functions

Raw SQL Queries

0 prepared

Unescaped Output

16 escaped

Nonce Checks

Capability Checks

File Operations

External Requests

Bundled Libraries

Output Escaping

42% escaped38 total outputs

Attack Surface

Post Call to Action Attack Surface

Entry Points0

Unprotected0

WordPress Hooks 7

filterthe_contentincludes\display.php:39

actionwp_enqueue_scriptsincludes\display.php:166

actionadd_meta_boxesincludes\metabox.php:30

actionsave_postincludes\metabox.php:81

actionadmin_initincludes\settings.php:33

actionadmin_menuincludes\settings.php:51

actionadmin_enqueue_scriptsincludes\settings.php:165

Maintenance & Trust

Post Call to Action Maintenance & Trust

Maintenance Signals

WordPress version tested5.0.25

Last updatedUnknown

PHP min version

Downloads3K

Community Trust

Rating0/100

Number of ratings0

Active installs10

Alternatives

Post Call to Action Alternatives

Simple Side Tab

simple-side-tab

Display a side tab that you can easily link to any page. Customize the tab text, font and colors. It's that simple. That's Simple Side Tab.

10K 1 CVE

LuckyWP Table of Contents

luckywp-table-of-contents

Creates SEO-friendly table of contents for your posts/pages. Works automatically or manually (via shortcode, Gutenberg block or widget).

100K 5 CVEs

SEO Friendly Images

seo-image

SEO Friendly Images automatically adds alt and title attributes to all your images improving traffic from search engines.

20K 1 CVE

WP Realtime Sitemap

wp-realtime-sitemap

A sitemap plugin to make it easier for your site to show all your pages, posts, archives, categories and tags in an easy to read format.

10K No CVEs

Heroic Table of Contents

heroic-table-of-contents

100

Heroic Table of Contents is the easiest way to add a table of contents to your site.

5K No CVEs

Developer Profile

Post Call to Action Developer Profile

srumery

2 plugins · 10K total installs

trust score

Avg Security Score

100/100

Avg Patch Time

27 days

View full developer profile

Detection Fingerprints

How We Detect Post Call to Action

Patterns used to identify this plugin on WordPress sites during automated security audits and web crawling.

Asset Fingerprints

Asset Paths

/wp-content/plugins/post-call-to-action/css/rum-post-cta.css

Version Parameters

rum-post-cta.css?ver=1.0.1

HTML / DOM Fingerprints

CSS Classes

rum-post-cta-imagerum-post-cta-metarum-post-cta-textrum-post-cta-buttoncta-btnrum-post-cta-clearfix

Data Attributes

id="rum-post-cta-box"class="cta-btn"class="rum-post-cta-img"

FAQ