RAWR for WordPress Security & Risk Analysis
wordpress.org/plugins/rawrYou got information - we got conversation! Rawr widgets sit right within the story and help your users to express and share their opinion with others.
Is RAWR for WordPress Safe to Use in 2026?
Generally Safe
Score 85/100RAWR for WordPress has no known CVEs and is actively maintained. It's a solid choice for most WordPress installations.
The 'rawr' plugin v0.1.0 exhibits a generally good security posture, with no known vulnerabilities or critical code issues detected. The absence of dangerous functions, raw SQL queries, file operations, and external HTTP requests is a strong positive. The presence of nonce and capability checks on all identified entry points (AJAX handlers and shortcodes) indicates a conscious effort to implement basic security measures. However, a significant concern arises from the output escaping, where only 38% of outputs are properly escaped. This suggests a potential for Cross-Site Scripting (XSS) vulnerabilities, especially if the unescaped outputs handle user-supplied data or dynamic content. While the current version shows no historical vulnerabilities, the low version number (0.1.0) suggests it's still in early development, and the limited static analysis scope (0 taint flows) may not have revealed deeper issues. The plugin's small attack surface is a mitigating factor, but the output escaping deficiency warrants attention.
Key Concerns
- Low output escaping percentage
RAWR for WordPress Security Vulnerabilities
RAWR for WordPress Release Timeline
RAWR for WordPress Code Analysis
Output Escaping
RAWR for WordPress Attack Surface
AJAX Handlers 1
Shortcodes 1
WordPress Hooks 15
Maintenance & Trust
RAWR for WordPress Maintenance & Trust
Maintenance Signals
Community Trust
RAWR for WordPress Alternatives
Pinpoll
pinpoll
Engage with your audience.
Surmetric Surveys
surmetric-surveys
A WordPress plugin that allows you to post a survey/poll to your WordPress site.
LiteSurveys
litesurveys
Learn from your site visitors using quick, popup surveys.
SH Advance Polls
sh-advance-polls
You can create polls and surveys for your audience and observe the full analytics in the admin panel.
Crowdsignal Forms
crowdsignal-forms
The Crowdsignal Forms plugin allows you to create and manage polls right from within the block editor.
RAWR for WordPress Developer Profile
1 plugin · 10 total installs
How We Detect RAWR for WordPress
Patterns used to identify this plugin on WordPress sites during automated security audits and web crawling.
Asset Fingerprints
/wp-content/plugins/rawr/common/vendor/tether-shepherd/shepherd-theme-arrows.css/wp-content/plugins/rawr/common/css/bootstrap-wp.min.css/wp-content/plugins/rawr/common/vendor/flat-social-icons/flat-icons.css/wp-content/plugins/rawr/admin/css/rawr-admin.min.css/wp-content/plugins/rawr/admin/js/rawr-admin-edit.min.js/wp-content/plugins/rawr/common/vendor/tether-shepherd/tether.js/wp-content/plugins/rawr/common/vendor/tether-shepherd/shepherd.min.js/wp-content/plugins/rawr/admin/js/rawr-admin.min.jsrawr-admin-edit.min.css?ver=shepherd-theme-arrows.css?ver=bootstrap-wp.min.css?ver=flat-icons.css?ver=rawr-admin.min.css?ver=rawr-admin-edit.min.js?ver=tether.js?ver=shepherd.min.js?ver=rawr-admin.min.js?ver=HTML / DOM Fingerprints
rawr-dashboard-widgetsrawr-admin-edit-wraprawr-headline-wraprawr-custom-text-wraprawr-social-share-buttonsrawr-content-wrap<!-- RAWR_ADMIN_AJAX --><!-- RAWR_ADMIN_OPTIONS --><!-- RAWR_ADMIN_POST_OPTIONS --><!-- RAWR_ADMIN_WIDGETS -->+3 moredata-rawr-widgetdata-rawr-post-iddata-rawr-user-iddata-rawr-widget-iddata-rawr-widget-settingsdata-rawr-options+7 morerawrAdminrawrAdminPostOptions/wp-json/rawr/v1/widgets/wp-json/rawr/v1/options[rawr_widget][rawr_social_share][rawr_headline][rawr_custom_text]