Does Reputando Reviews Widget have any unpatched vulnerabilities?

No. All known vulnerabilities in Reputando Reviews Widget have been patched as of the latest data update. Always keep the plugin updated to the latest version.

Is Reputando Reviews Widget compatible with WordPress 6.8.5?

According to WordPress.org data, Reputando Reviews Widget 1.0.8 has been tested up to WordPress 6.8.5. Check the plugin's changelog for the latest compatibility information.

Is Reputando Reviews Widget compatible with PHP 7.0+?

Reputando Reviews Widget requires PHP 7.0 or higher. Most modern WordPress hosts run PHP 8.1 or 8.2. If you are on an older PHP version, consider upgrading before installing this plugin.

How often is Reputando Reviews Widget updated?

Reputando Reviews Widget was last updated on Mar 2, 2026. Frequent updates are generally a positive security signal.

What is Reputando Reviews Widget's security score?

Reputando Reviews Widget has a WP-Safety security score of 100/100. This score is computed from CVE history, patch response time, developer trust signals, and plugin maintenance activity.

Reputando Reviews Widget Security & Risk Analysis

wordpress.org/plugins/reputando-reviews-widget

Display customer reviews from your Reputando profile on any WordPress page or post using a simple shortcode.

10 active installs v1.0.8 PHP 7.0+ WP 5.0+ Updated Mar 2, 2026

A · Safe

CVEs total0

Unpatched0

Last CVENever

Plugin page Download

Safety Verdict

Is Reputando Reviews Widget Safe to Use in 2026?

Generally Safe

Score 100/100

Reputando Reviews Widget has no known CVEs and is actively maintained. It's a solid choice for most WordPress installations.

No known CVEs Updated 1mo ago

Risk Assessment

The reputando-reviews-widget plugin version 1.0.8 exhibits a generally strong security posture based on the provided static analysis. A significant strength is the complete absence of raw SQL queries, with all 6 queries utilizing prepared statements, mitigating the risk of SQL injection. Furthermore, the plugin demonstrates excellent output escaping practices, with 97% of outputs properly handled, greatly reducing the likelihood of cross-site scripting (XSS) vulnerabilities. The presence of 17 nonce checks and 13 capability checks across its 15 entry points (including AJAX handlers and shortcodes) is also a positive indicator of secure development, as these are crucial for preventing common web attacks. The plugin also has a clean vulnerability history with no known CVEs, which suggests a history of stable and secure development.

However, one area of concern identified in the taint analysis is a single flow with an unsanitized path. While classified as critical severity 0 and high severity 0, the very existence of an unsanitized path is a potential weakness that could be exploited if combined with other factors or if the severity classification is an oversight. The attack surface, while fully protected by authentication/permission checks, is still composed of 14 AJAX handlers and a shortcode, representing multiple potential interaction points. The plugin's lack of bundled libraries is also a positive, as it avoids the risk of using outdated and vulnerable components. Overall, the plugin is well-developed from a security perspective, but the single unsanitized path warrants careful consideration and potential further investigation.

Key Concerns

Flow with unsanitized paths found

Vulnerabilities

None known

Reputando Reviews Widget Security Vulnerabilities

No known vulnerabilities — this is a good sign.

Code Analysis

Analyzed Mar 17, 2026

Reputando Reviews Widget Code Analysis

Dangerous Functions

Raw SQL Queries

6 prepared

Unescaped Output

224 escaped

Nonce Checks

Capability Checks

File Operations

External Requests

Bundled Libraries

SQL Query Safety

100% prepared6 total queries

Output Escaping

97% escaped230 total outputs

Data Flows

1 unsanitized

Data Flow Analysis

8 flows1 with unsanitized paths

reputando_add_custom_meta_filter (admin\src\reputando_post_column_adjustments.php:331)

Source (user input) Sink (dangerous op) Sanitizer Transform Unsanitized Sanitized

Attack Surface

Reputando Reviews Widget Attack Surface

Entry Points15

Unprotected0

AJAX Handlers 14

authwp_ajax_reputando_get_tokenadmin\src\reputando_ajax_callbacks.php:25

authwp_ajax_reputando_get_reviewsadmin\src\reputando_ajax_callbacks.php:111

authwp_ajax_reputando_generate_preview_shortcodeadmin\src\reputando_ajax_callbacks.php:160

authwp_ajax_reputando_update_locationadmin\src\reputando_ajax_callbacks.php:218

authwp_ajax_reputando_delete_accountadmin\src\reputando_ajax_callbacks.php:252

authwp_ajax_reputando_fetch_post_contentadmin\src\reputando_post_column_adjustments.php:236

authwp_ajax_reputando_save_post_contentadmin\src\reputando_post_column_adjustments.php:262

authwp_ajax_reputando_display_reply_contentadmin\src\reputando_post_column_adjustments.php:278

authwp_ajax_reputando_display_review_contentadmin\src\reputando_post_column_adjustments.php:301

authwp_ajax_reputando_publish_replyadmin\src\reputando_post_column_adjustments.php:328

authwp_ajax_reputando_fetch_slider_contentadmin\src\reputando_post_column_adjustments.php:584

noprivwp_ajax_reputando_fetch_slider_contentadmin\src\reputando_post_column_adjustments.php:585

noprivwp_ajax_reputando_pagination_reviewsfrontend\shortcode\reputando_review_shortcode.php:335

authwp_ajax_reputando_pagination_reviewsfrontend\shortcode\reputando_review_shortcode.php:336

Shortcodes 1

[reputando_reviews] frontend\shortcode\reputando_review_shortcode.php:182

WordPress Hooks 32

actionadmin_menuadmin\src\reputando_admin_menus.php:13

actionadmin_initadmin\src\reputando_admin_menus.php:150

actionadmin_enqueue_scriptsadmin\src\reputando_ajax_callbacks.php:4

actioninitadmin\src\reputando_custom_posts.php:88

filterpost_row_actionsadmin\src\reputando_custom_posts.php:106

actionadmin_enqueue_scriptsadmin\src\reputando_post_column_adjustments.php:22

filtermanage_reputando_shortcodes_posts_columnsadmin\src\reputando_post_column_adjustments.php:30

actionmanage_reputando_shortcodes_posts_custom_columnadmin\src\reputando_post_column_adjustments.php:41

filtermanage_edit-reputando_reviews_columnsadmin\src\reputando_post_column_adjustments.php:56

actionmanage_reputando_reviews_posts_custom_columnadmin\src\reputando_post_column_adjustments.php:152

actionadmin_footeradmin\src\reputando_post_column_adjustments.php:207

actionrestrict_manage_postsadmin\src\reputando_post_column_adjustments.php:330

actionpre_get_postsadmin\src\reputando_post_column_adjustments.php:384

filterviews_edit-reputando_reviewsadmin\src\reputando_post_column_adjustments.php:413

actionpre_get_postsadmin\src\reputando_post_column_adjustments.php:463

actionrestrict_manage_postsadmin\src\reputando_post_column_adjustments.php:482

actionpre_get_postsadmin\src\reputando_post_column_adjustments.php:500

filtermonths_dropdown_resultsadmin\src\reputando_post_column_adjustments.php:597

actionadmin_initadmin\src\reputando_post_column_adjustments.php:601

actionreputando_sync_reviews_eventadmin\src\reputando_review_sync_cron.php:4

actionadd_meta_boxesadmin\src\reputando_shortcode_metaboxes.php:45

actionsave_postadmin\src\reputando_shortcode_metaboxes.php:288

actionsave_postadmin\src\reputando_shortcode_metaboxes.php:831

actionsave_postadmin\src\reputando_shortcode_metaboxes.php:902

actionadmin_noticesadmin\src\reputando_shortcode_metaboxes.php:942

actionwp_enqueue_scriptsfrontend\shortcode\reputando_review_shortcode.php:313

actionadmin_enqueue_scriptsfrontend\shortcode\reputando_review_shortcode.php:333

actionplugins_loadedreputando.php:35

actionadmin_initreputando.php:44

filterwp_kses_allowed_htmlreputando.php:56

filterkses_allowed_protocolsreputando.php:80

actionadmin_noticesreputando.php:86

Scheduled Events 1

reputando_sync_reviews_event

Maintenance & Trust

Reputando Reviews Widget Maintenance & Trust

Maintenance Signals

WordPress version tested6.8.5

Last updatedMar 2, 2026

PHP min version7.0

Downloads431

Community Trust

Rating0/100

Number of ratings0

Active installs10

Alternatives

Reputando Reviews Widget Alternatives

No alternatives data available yet.

Developer Profile

Reputando Reviews Widget Developer Profile

Reputando

1 plugin · 10 total installs

trust score

Avg Security Score

100/100

Avg Patch Time

30 days

View full developer profile

Detection Fingerprints

How We Detect Reputando Reviews Widget

Patterns used to identify this plugin on WordPress sites during automated security audits and web crawling.

Asset Fingerprints

Asset Paths

/wp-content/plugins/reputando-reviews-widget/admin/css/reputando-admin.css/wp-content/plugins/reputando-reviews-widget/admin/js/reputando-admin-scripts.js

Script Paths

admin/js/reputando-admin-scripts.js

Version Parameters

reputando-admin-css?ver=reputando-admin-scripts.js?ver=

HTML / DOM Fingerprints

CSS Classes

reputando_page_reputando-connect

Data Attributes

reputando_selected_locationlocation_connect

JS Globals

reputando_ajax

FAQ