Does Quiz Leads have any unpatched vulnerabilities?

No. All known vulnerabilities in Quiz Leads have been patched as of the latest data update. Always keep the plugin updated to the latest version.

Is Quiz Leads compatible with WordPress 4.7.32?

According to WordPress.org data, Quiz Leads 1.0 has been tested up to WordPress 4.7.32. Check the plugin's changelog for the latest compatibility information.

How often is Quiz Leads updated?

Quiz Leads was last updated on Unknown. Frequent updates are generally a positive security signal.

What is Quiz Leads's security score?

Quiz Leads has a WP-Safety security score of 100/100. This score is computed from CVE history, patch response time, developer trust signals, and plugin maintenance activity.

Quiz Leads Security & Risk Analysis

wordpress.org/plugins/quizleads

Motive This plugin is used to generate leads by taking user through very easy questions.

30 active installs v1.0 PHP + WP 3.9.0+ Updated Unknown

autorespondersleadsprofessional-templatesquizquiz-funnels

A · Safe

CVEs total0

Unpatched0

Last CVENever

Download

Safety Verdict

Is Quiz Leads Safe to Use in 2026?

Generally Safe

Score 100/100

Quiz Leads has no known CVEs and is actively maintained. It's a solid choice for most WordPress installations.

No known CVEs

Risk Assessment

The Quizleads plugin v1.0 presents a significant security risk due to its unprotected AJAX endpoints. With two AJAX handlers identified, and both lacking authentication checks, an attacker could potentially trigger these functions without any authorization. This is a critical concern as it opens the door to unauthorized actions on the WordPress site. While the plugin shows positive signs like the absence of dangerous functions, file operations, and external HTTP requests, and a reasonable rate of output escaping, these strengths are overshadowed by the fundamental security flaws in handling user input via AJAX. The lack of any recorded vulnerabilities might suggest a history of responsible development or simply a lack of discovery, but it does not mitigate the immediate risks present in the current code. The absence of taint analysis results is also noteworthy, though without further context, it's difficult to draw strong conclusions. Overall, the plugin's security posture is weak due to the directly exploitable AJAX endpoints. Addressing these will be crucial for improving its safety.

Key Concerns

AJAX handlers without authentication checks
SQL queries without prepared statements
Output escaping is not consistently applied

Vulnerabilities

None known

Quiz Leads Security Vulnerabilities

No known vulnerabilities — this is a good sign.

Code Analysis

Analyzed Mar 16, 2026

Quiz Leads Code Analysis

Dangerous Functions

Raw SQL Queries

0 prepared

Unescaped Output

133 escaped

Nonce Checks

Capability Checks

File Operations

External Requests

Bundled Libraries

SQL Query Safety

0% prepared2 total queries

Output Escaping

63% escaped212 total outputs

Attack Surface

2 unprotected

Quiz Leads Attack Surface

Entry Points2

Unprotected2

AJAX Handlers 2

noprivwp_ajax_leadinit.php:336

authwp_ajax_leadinit.php:337

WordPress Hooks 8

actionadd_meta_boxesadmin_settings.php:4

actionsave_postadmin_settings.php:498

actioninitinit.php:11

actionadmin_enqueue_scriptsinit.php:30

actioninitinit.php:41

actionwp_enqueue_scriptsinit.php:50

actionadmin_menuinit.php:284

actiontemplate_redirectinit.php:317

Maintenance & Trust

Quiz Leads Maintenance & Trust

Maintenance Signals

WordPress version tested4.7.32

Last updatedUnknown

PHP min version

Downloads2K

Community Trust

Rating0/100

Number of ratings0

Active installs30

Alternatives

Quiz Leads Alternatives

Interactive Content – H5P

h5p

Create and add rich content to your website for free. Some examples of what you get with H5P are Interactive Video, Quizzes, Collage and Timeline.

40K 3 CVEs

Quiz and Survey Master (QSM) – Easy Quiz and Survey Maker

quiz-master-next

Create quizzes, surveys, and tests easily on WordPress with this versatile plugin. Perfect for engaging any audience and gathering valuable insights!

40K 58 CVEs

Quiz Maker

quiz-maker

QUIZ MAKER plugin allows you to make an unlimited number of Quizzes, Exams and Tests

20K 22 CVEs

Website Pop-up Builder by BDOW! (formerly Sumo): Pop-ups + forms for email opt-ins and lead generation

sumome

Sumo is trusted by over 600,000 businesses — small and large — in growing their email lists, customer base, and revenue online.

20K 1 CVE

Lenix Leads Collector

lenix-elementor-leads-addon

Leads Collector, Collects forms entries from Elementor,Cf7,WPForms and more with export to CSV.

10K 1 CVE

Developer Profile

Quiz Leads Developer Profile

Bhuvnesh Gupta

1 plugin · 30 total installs

trust score

Avg Security Score

100/100

Avg Patch Time

30 days

View full developer profile

Detection Fingerprints

How We Detect Quiz Leads

Patterns used to identify this plugin on WordPress sites during automated security audits and web crawling.

Asset Fingerprints

Asset Paths

/wp-content/plugins/quizleads/custom_style.css/wp-content/plugins/quizleads/templates/1/js/custom.js/wp-content/plugins/quizleads/templates/1/css/font.css/wp-content/plugins/quizleads/templates/1/css/bootstrap.css/wp-content/plugins/quizleads/templates/1/css/custom.css

Script Paths

/wp-content/plugins/quizleads/templates/1/js/custom.js

HTML / DOM Fingerprints

CSS Classes

quizleads-form

FAQ